Marks and Spencer Is Finally opened your online ordersAfter months Cyber attack that is set for cost British High Street Retailer 300 million pounds in profit this year.
It comes as a new Hacking group This incident is associated with this incident, after it is revealed Dragonforce Group sent M&S CEO Stuart Machin After an email days it faced a major cyber attack about hack and demanded a ransom payment.
Email, see and reported BBCSaid: “We have marched from China to the UK and have mercilessly raped and encrypted all the servers.”
Dragonforce is not the only group that has been done The retailer is associated with attackAs the scattered Spider Network was previously named as an actor of social engineering attack.
According to Sergei Shaikevich, a researcher at Cybercity Company Checkpoint, more hacker groups are combining the dark web.
“Cooperation between two powerful groups is very interesting,” they say. “This is a result that we combine between large groups, more and more on the dark web.”
Here we all know about two hackers groups
What is dragonforce?
Dragonforce is a hacker organization that provides Ransomware For cyber-criminal colleagues for 20 percent cut of any ransom collected. This means that for a fee, they lease their malware through dark web marketplaces to cyber-agreeds.
While the organization originally began working in 2023, they have broadcast their business model on a large scale in the last few months.
“In the last two months, they began to be very active in one of the biggest dark web forums,” says Sergei, “
He said, “They started getting more aggressive, I think a few weeks before all attacks in the UK,” they say.
Researchers have claimed that they work outside Malaysia, some disputes and say they are located in Russia. Along with the M&S hack, the dragonforce has been linked to the co-ope of cyber attack.
What is scattered spider?
The scattered spider is a community of hackers that targets huge organizations in various fields using social engineering strategy.
Sergei says, “They are very good in social engineering of various types.” They have used sim swapping And people replicated IT employees to cheat people to use their systems.
The US and Britain are believed to have a community of young adults in the US and Britain, the group gained notorious for its participation in hacking and excluding two of the two largest casinos and gambling companies in the United States.
“They understand human nature and how the big corporations work,” says Sergei. “They are very successful.”
In 2023, he was associated with hacking and forcibly recovery of Kaiser Entertainment and MGM Resorts International, due to which the east was paid a ransom of about 11 million pounds ($ 15 million). They were capable of using a significant number of casino customers through the demand for ransomware.
A 17 -year -old hacker from the United Kingdom was arrested in connection with hack and ransom attempted in July 2024.
How did cyberrtack happen?
M&S first revealed that he had experienced a cyber attack on 22 April, which disrupted his online operation and even stopped paymentless payments. Hundreds of agency employees in the company were asked not to work as the retailer dealt with the collapse of cyber attacks.
Customer personal data – which could include names, email addresses, postal addresses and date of birth – was also taken by hackers in the attack.
M&S revealed last month that the attack was caused by a “human error”, as Mr. Machin said in an annual figure report in May that hackers had access to the company’s IT system through a third party.
He said at that time: “We did not leave the door open, it had nothing to do with the under-investment. Everyone is insecure. For us, we were inauspicious on this particular day through some human error.”
In response to the attacks on the retail sector, the NCSC advised the industry and replied on speculation that the scattered Spider Group used social engineering to help the desk and password and MFA (multi-factor authentication) reset.
His blog post wrote, “Criminal activity online – but is not limited to ransomware and data extortion.” “Such attacks are becoming more and more common. And all organizations, all sizes need to be prepared.”
Paul Foster, chief deputy director of the NCA National Cybercrime Unit, said: “Expert NCA Cyber Crime Officer is working closely with law enforcement partners, who recently to investigate the cyber events affecting the retail area. Identifying and providing justice to the responsible criminals is a highest priority.
“We are individually considering events, but there is a series of hypotheses and they are attractive they can be connected.
“The impact of these events has been important and businesses will be greatly concerned. I will encourage all organizations to follow the advice on the NCSC website to ensure that they have effective cyber security measures to help prevent attacks.
“I will also urge those who unfortunately fall victim to an attack to join with law enforcement as part of the reporting process. NCA and policing will secretly and prudently investigate, as well as support the recovery of systems and data.”
How much money has been lost?
The decline from the cyber attack noticed that the company lost a price of £ 650 million in a few days. M&S said that this year is expected to take a hit of an estimated £ 300 million in profits, as he predicted disruption of his online business in July.
What did M&S say in response?
As the M&S reopening its online operation, he made a statement that said: “Now you can place online orders with standard distribution to England, Scotland and Wales. Delivery for Northern Ireland will resume in the coming weeks.
“We will resume click and assembled, next day delivery, nomination-day delivery and international ordering in the coming weeks.”
Independent Has reached the retailer for additional comments.