Summary
- The hacking group Handala, linked to Iran, asserts it has compromised FBI drones and accessed surveillance footage.
- They have issued threats against teams participating in the upcoming 2026 FIFA World Cup.
- Experts have challenged the validity of some evidence shared by the hackers.
The Iran-associated hacking collective known as Handala, which previously gained attention for alleging the hacking of FBI Director Kash Patel’s email, has made threats regarding security at the 2026 FIFA World Cup, claiming to have hacked into FBI surveillance drones utilized at event locations.
A report from CBS News on Friday highlighted that the SITE Intelligence Group, which tracks extremist groups and online threats, noted Handala's claims of having accessed data from drones purportedly controlled by the U.S. Federal Bureau of Investigation.
Handala stated in a release that it had gained access to "every image and every suspect" captured by these drones, which they claim are equipped with facial recognition and license plate scanning capabilities, asserting that the footage dates back "for months."
Along with their assertion regarding FBI drones, Handala directed a warning at teams involved in the World Cup, stating, "You better tighten your World Cup security; we have issues with some of those teams." They added, "[First-person view drones] are everywhere; you never know when one might show up right in your team's bus."
This claim arises during a period of increased tension between the United States and Iran, particularly after U.S.-Israeli strikes against Iran earlier this year. The U.S. Department of Justice has linked Handala to Iran's Ministry of Intelligence and Security, noting their involvement in data theft, wiper malware, and online influence operations that leverage leaked information, threats, and media attention to intimidate targets.
The threats from Handala emerge as law enforcement agencies are alerting that scammers are attempting to exploit World Cup fans as the global soccer event approaches in North America.
However, these claims have not been independently verified. SITE has raised doubts about some of the evidence produced by Handala, stating that one video claimed to show the breach was actually created in December 2024 by a software firm promoting technology used by a U.S. police department for assessing tornado damage.
In March, Handala claimed responsibility for compromising FBI Director Kash Patel's email account and subsequently leaked personal images and other content online. More recently, the group took credit for a breach at California Water Service, disclosing around five gigabytes of purportedly stolen customer and internal company information.
This announcement coincides with the State Department's Rewards for Justice program, which is currently offering up to $10 million for information regarding foreign government-directed cybercriminals targeting U.S. critical infrastructure.