Iran-linked hackers from the Handala Hack Team published more than 300 emails and photos on Friday from what appears to be FBI Director Kash Patel's personal Gmail account. The group, accused by U.S. authorities of operating as a front for Iran's Ministry of Intelligence and Security, claimed the breach as retaliation for the FBI and Justice Department seizing its websites last week.

The leaked materials include personal family correspondence from 2010 to 2012, travel receipts from 2012 to 2019, photos of Patel during a trip to Cuba, discussions about tax filings, and apartment leasing inquiries from over a decade ago. One email from 2014 originated from Patel's DOJ account and was forwarded to his personal Gmail, with copies to FBI addresses, but no government secrets or current information appear in the dump. Metadata shows files were last modified on May 21, 2025, suggesting the intrusion predates Patel's tenure as FBI director, which began February 20, 2025.

An FBI spokesperson confirmed awareness of the incident, stating the information is historical, involves no government data, and that the bureau has taken all necessary steps to mitigate risks. The State Department offers a $10 million reward for information leading to the disruption of Iranian hacking operations linked to groups like Handala.

Handala previously claimed a cyberattack on U.S. medical device maker Stryker, prompting the domain seizures. U.S. intelligence warned Patel of Iranian targeting as early as 2024, amid broader cyber campaigns against Trump administration figures. The group often exaggerates its successes, such as a debunked claim against payment processor Verifone.

The incident underscores persistent Iranian cyber threats to U.S. officials, even personal accounts, as proxy groups conduct operations deniable for Tehran.