The FBI has confirmed that an Iran-linked hacker group managed to gain access to an email account belonging to FBI Director Kash Patel, though the agency quickly clarified that no government information was compromised in the incident, as reported by Security Week. This news comes after the hacker group, known as Handala, went public with their claims on Friday.
Handala boasted about the hack, releasing files they claimed were photos, emails, and classified documents from Patel’s inbox. They didn’t hold back, writing that “The so-called ‘impenetrable’ systems of the FBI were brought to their knees within hours by our team.”
However, the FBI was quick to push back on Handala’s narrative. They pointed out that the accessed account wasn’t actually hosted on FBI systems; it was a personal Gmail account. The agency also noted that any information stored in that personal email was “historical in nature and involves no government information.”
It seems like this wasn’t a direct assault on the FBI’s internal systems, but rather a compromise of a personal account that happened to belong to a high-profile official
The exact timing of the hack remains a bit fuzzy, but it might have been part of a broader operation by Iranian hackers back in 2024. That particular campaign reportedly targeted a number of accounts, including some linked to President Trump’s presidential campaign. In their official statement to the media, the FBI acknowledged that they are aware of “malicious actors targeting Director Patel’s personal email information.” They emphasized that steps have already been taken to mitigate any potential risks arising from this breach.
Handala, the group behind these claims, says it operates as an anti-Israel and anti-US hacktivist collective. However, many cybersecurity experts and government officials widely believe that Handala is actually a persona used by the Iranian government, specifically its Ministry of Intelligence and Security (MOIS), to carry out cyberattacks and information operations.
This group has a history of causing real trouble. They recently caused significant disruptions for the US medtech giant Stryker, reportedly hacking into its systems and wiping thousands of devices. While some of Handala’s other claims are difficult to verify and sometimes seem exaggerated or even false, their ability to inflict damage is undeniable.
The timing of Handala’s claims about hacking Patel’s email account is also quite telling. It came shortly after the FBI announced that it had seized several domains used by the group. On top of that, the US government officially stated that Handala operates under the direct command of Iran’s MOIS.
The US has been pretty aggressive in its efforts to combat these kinds of threats. They’re offering rewards of up to $10 million for information leading to the identification or location of foreign hackers who target critical infrastructure. The State Department specifically highlighted Iranian threat groups Parsian Afzar Rayan Borna and Handala as targets for these rewards.
Published: Mar 31, 2026 04:45 pm