President of Marx and Spencer “Painful” has revealed Cyber attack on retailer It was believed that the hacking group was provoked Scattered spider And a ransomware operation, dragonforce, is run by former computer gamers.
It is visible in front of MPs, Archie Norman After hack, he refused to confirm the ransom payment.
Attack started in late April M&S Unable to take online order For more than six weeks. The M&S estimates that the attacks lost about 300 million pounds in the attack, but the cost is expected to recover by half through management, insurance and other measures.
Speaking in a business and business selection committee, Mr. Norman said that it was “an overlapping to describe it as painful”, saying: “We are still in reconstruction mode and will be for some time to come.”
He said that the ordinance was “like an out-of-body experience” and he had not experienced anything like this before working in the corporate world “.
“It is appropriate to say that everyone in the M&S experienced it, such as our ordinary shop colleagues worked in ways he did not work for 30 years, just working and working additional hours to try and keep the show on the road.
“The cyber team was probably not sleepy for a week, or three hours a night.”
Talking about the nature of the attack, he told the MPs that hackers “never send you a letter signed on scattered spider, it does not happen”.
“The attacker is also working through middlemen, so we believe that the attack was provoking the attack, and then – Dragonforce – which is a ransomware operation based, we believe, in, in, in, in, in, in, Asia,
“So you are aligning parties working together.
“We took a preliminary decision that no one in the M&S would deal directly with the actor of the danger – we felt that the right thing is to leave it to professionals with experience in this case.”
“It is believed that these groups were pre -computer gamers who graduated in cyber – this may not be true, I am completely relying on hearing,” said Mr. Norman.
The chairman said that the so -called “danger actors” also chose to communicate with the media, and were in touch with it. BBC After hack.
Mr. Norman insisted that he would not talk about the nature of the discussions with hackers.
However, when asked if businesses have to pay the demand for ransomware after an attack, he said: “No, I don’t think you do. It’s a professional decision … Questions businesses will have to ask what they are getting when they see the demand?
“Because once your system is compromised and you have to rebuild it anyway, they probably exfiltrate the data that you don’t want to publish, perhaps there is something there.
“But in our case, there was a lot of damage.”
