A UK national accused of hacking U.S. companies and healthcare networks is facing extradition after being charged in a newly unsealed federal indictment.
What happened
Kai West, a 25-year-old British citizen, has been charged with four federal crimes related to a series of cyberattacks that allegedly affected more than 40 U.S. organizations. West is accused of operating under aliases including IntelBroker and Kyle Northern. According to prosecutors, his hacking activity spanned several years and targeted a range of sectors from telecommunications and healthcare to tech and automotive companies.
The indictment, recently unsealed by the U.S. Attorney’s Office for the Southern District of New York, details the extent of the damage caused, with over $25 million in losses attributed to West’s alleged cyber intrusions. He was arrested in France in February 2025 and remains in pre-trial detention as U.S. authorities pursue extradition.
Going deeper
Federal officials say West ran a financially motivated hacking campaign, stealing sensitive corporate and personal data, then selling it through cybercrime forums. He is said to have started 158 online threads offering stolen data, including 41 offers for sale between 2023 and 2025. He also led a hacking group known as CyberN[——], and is accused of attempting to earn over $2 million from these activities.
Victims listed in the indictment include major companies such as Cisco, HPE, Nokia, Ford, AMD, and Zscaler. The data allegedly stolen from a municipal healthcare provider contained personally identifiable and protected health information, including Social Security numbers, insurance details, and dates of birth.
West has been charged with conspiracy to commit computer intrusions, conspiracy to commit wire fraud, accessing a protected computer to obtain private information, and wire fraud. If convicted, he faces a maximum sentence of 50 years.
What was said
U.S. Attorney Jay Clayton described the alias IntelBroker as responsible for “millions in damages to victims around the world,” stating the FBI’s commitment to tracking cybercriminals internationally. FBI Assistant Director Christopher G. Raia echoed that sentiment, citing New Yorkers' frequent exposure to cybercrime and reinforcing efforts to hold actors accountable, even if based overseas.
West was reportedly identified after offering stolen data to undercover agents, linking him to the IntelBroker identity.
FAQs
What is the extradition process for cybercrime suspects?
Extradition typically involves formal requests between countries, supported by evidence. The process must comply with treaties and domestic laws of both nations involved, in this case, France and the U.S.
Why do hackers use aliases like IntelBroker?
Aliases allow hackers to obscure their real identities and operate anonymously across forums and marketplaces. These pseudonyms can build reputations within cybercriminal communities.
What types of organizations are most often targeted by hackers like West?
Hackers frequently target organizations with large databases, such as healthcare providers, telecoms, tech firms, and financial institutions especially those handling sensitive or regulated data.
Can stolen healthcare data be misused like credit card information?
Yes. Healthcare data can be sold for insurance fraud, identity theft, or used in targeted phishing attacks. It’s often more valuable than financial data because of its long-term usability.
How are law enforcement agents able to infiltrate cybercrime forums?
Agencies often conduct undercover operations, posing as buyers or sellers in online forums to gather evidence, build trust, and eventually identify the real individuals behind digital personas.
Farah Amod
