Hackers Arrested: UK Retail Hacking Spree

Recent Arrests in U.K. Retail Hacking Cases

Authorities in the United Kingdom have announced the arrest of four individuals. These arrests are connected to a series of cyberattacks that impacted several prominent retailers earlier in the year.

Details of the Arrests

The National Crime Agency (NCA) reported that a 20-year-old woman, two men aged 19, and a 17-year-old youth were taken into custody on Thursday. The arrests occurred at various locations throughout the U.K.

The individuals are suspected of involvement in hacking, blackmail, money laundering, and participation within an organized criminal group.

Affected Retailers and the Nature of the Attacks

The cyberattacks targeted major British retailers, including Marks & Spencer, Harrods, and the Co-op.

The intrusions began in April, initially focusing on the Co-op to steal customer data. Subsequently, Marks & Spencer also experienced a data breach.

Attribution to Scattered Spider

Both the Co-op and Marks & Spencer breaches have been linked to a hacking group known as Scattered Spider.

This collective employs methods of impersonation and deception. They manipulate call centers and help desks to gain unauthorized network access.

Ransomware Deployment and Mitigation

It is alleged that the hackers facilitated the deployment of file-encrypting ransomware, specifically from the group DragonForce, onto Marks & Spencer’s systems.

The Co-op reportedly prevented the ransomware from activating by proactively shutting down its network. This action was taken before the hackers could fully deploy the malicious software.

Harrods also stated that they successfully defended against a significant portion of a cyberattack attempt.

The suspects remain unnamed at this time, as the investigation continues.