M&S data breach linked to adolescent hacking group 'Scattered Spider', who similarly aim casinos, including MGM.
Revised Article:
The infamous teenage hacking crew, Scattered Spider, is suspected of causing chaos for Marks & Spencer, a renowned retailer, with their recent cyber attack.
The retailer's online sales have been halted for an extended period due to this devastating cyber-attack, leading to shares plummeting by over half a billion pounds.
Experts aiding M&S in their current predicament have suggested that this band of cybercriminals, believed to consist of both British and American youths, could be behind the security breach.
Scattered Spider, also known as UNC3944, employs hacking tools created by the Russia-linked group, BlackCat, and ALPHV. This potential partnership with other ransomware groups to share ransom payments is under consideration.
The hacking gang has previously been implicated in major hacks on casino giants such as MGM Resorts International and Caesars Entertainment. They utilized digital attacks to disable MGM's slot machines and disrupt various systems, while allegedly raiding personal customer data in a separate incident at Caesars.
This ransomware attack on M&S is reported to have locked down several of the retailer's systems, as per the Telegraph.
Ransomware attacks typically occur when a criminal intrudes upon a victim's IT infrastructure, employing a computer virus to encrypt files and computers. Once encrypted, hackers demand a ransom fee in exchange for unlocking the systems. The fees for such attacks can escalate into the millions.
Scattered Spider, known for its social engineering tactics, is one of the most active and aggressive threat actors currently impacting organizations in the United States, according to Charles Carmakal, the Chief Technology Officer at Mandiant Intelligence. These members often speak fluent English and employ tactics that are challenging to defend against for many organizations with mature security programs.
As a result of the attack, certain M&S stores have faced empty shelves, angering customers who have taken to social media to express their frustration. The supply issues are reportedly linked to the suspected cyber attack, which has already forced M&S to cancel online orders.
Some M&S stores have reportedly received fewer pallets than usual for deliveries due to the aftermath of the cyber attack, causing disruption for both the retailer and its suppliers.
Scattered Spider has targeted telecom, business process outsourcing, and even infrastructure organizations, according to analyst reports.
Employees of M&S are working diligently to restore systems and services, but the repair process is ongoing, causing concern among investors. Some research indicates that this cyber attack may cost M&S approximately seven figures per day as digital channels remain offline.
- The hacking group Scattered Spider, notorious for their cyber attacks on businesses, is suspected of causing disruptions to M&S deliveries and online sales, which has led to a significant drop in financial value.
- Experts believe that Scattered Spider might have partnered with the Russia-linked group BlackCat to execute their malicious activities, using sophisticated hacking tools to inflict damage.
- This incident has sparked 'general-news' coverage in multiple media outlets, with reports suggesting that the hackers blocked M&S systems for ransom, interfering with both business operations and customer services.
- A majority of M&S stores have faced empty shelves due to the attack, dissatisfying customers who have expressed their concern on social media platforms such as Twitter and Facebook.
- The massive amount of cause for concern is a delay in supplies, which were reportedly affected during the peak period due to the cyber attack, causing disruptions for both M&S and its suppliers.
- In addition to retail businesses, Scattered Spider has shown interest in targeting infrastructure and telecom organizations according to security analysts.
- The aftermath of the attack and the ongoing repair process have left investors worried about the implications for M&S's financials, as the company is estimated to lose millions each day with digital channels still offline.
