A series of cyber attacks disrupting UK retailers, leading to empty shelves and compromised customer data, has prompted authorities to investigate the notorious group known as Scattered Spider. In a recent documentary, the National Crime Agency (NCA) revealed this, shedding light on the rapidly escalating crisis affecting the sector.
Background
For the past few weeks, prominent UK retailers have faced significant operational challenges from cyber attacks. Stores have reported empty shelves, cancelled online orders, and stolen sensitive information belonging to millions of customers. The full extent of these disruptions has yet to be determined, as affected companies and law enforcement have been tight-lipped about the details.
The NCAโs investigation indicates that Scattered Spider may be connected to these attacks. This group is notable for being predominantly composed of younger individuals, including teenagers, and communicating fluently in English, setting it apart from more commonly known cybercriminal networks based in nations like Russia or North Korea.
Paul Foster, head of the NCAโs national cyber-crime unit, confirmed in the BBC documentary, โWe are looking at the group publicly known as Scattered Spider, but weโve got a range of different hypotheses. Our top priority is to catch whoever is behind these attacks.โ
Impact on Retailers
Retail giants like Marks & Spencer (M&S) and Co-op have reported severe disruptions. M&S has experienced a complete shutdown of its computer systems due to a ransomware attack, which has severely impacted inventory management and online shopping capabilities for weeks. Alongside this, hackers have reportedly stolen both customer and employee data.
At Co-op, the staff acted proactively by taking systems offline to avert a ransomware infection. However, despite these efforts, a substantial amount of customer and employee data was compromised, affecting operations across supermarkets and funeral services.
Harrods also acknowledged a breach that required them to deactivate their computer systems amid a cyber threat, although details about the incident remain limited.
Proliferation of Cybercrime
Cybersecurity experts have pointed to the modus operandi of Scattered Spider, a loosely organized group that coordinates using various online platforms, including Discord and Telegram. While the NCA is considering multiple angles in its investigation, it remains focused on this groupโs potential ties to the retail sector attacks.
Foster added, โWe know that Scattered Spider communicates through various online channels, which is key to their operational capabilities. This does not necessarily mean they are based in the UK.โ
Connections to Global Cybercrime
The groupโs involvement in previous high-profile attacks, including incidents in the United States, highlights a trend of coordinated cybercriminal activities. In November, U.S. authorities charged five individualsโranging in age from their twenties to teensโallegedly tied to Scattered Spider.
As investigations continue, cybersecurity specialists urge organizations to tighten their security protocols. This includes re-evaluating their IT help desk password reset proceduresโa tactic reportedly favored by Scattered Spider to gain unauthorized system access.
Cybersecurity expert Lisa Forte emphasized the groupโs reliance on social engineering techniques to manipulate personnel into facilitating breaches, such as by calling a help desk.
A former teen hacker, who now works in cybersecurity, expressed no surprise at the association of younger individuals with these attacks. โThe tools are readily available, and itโs easy to jump online and search for hacking techniquesโฆ but for what end? Almost everyone gets caught eventually,โ he stated.
Future Implications and Measures
As retailers grapple with the fallout from these cyberattacks, the NCA remains committed to tracking down the perpetrators. With increasing digital vulnerabilities, experts assert the need for heightened awareness and preparedness to prevent further incidents.
The ongoing investigation into Scattered Spider underscores a broader challenge facing the retail industry as it navigates security in an ever-evolving digital landscape. It promises increased scrutiny and possibly more stringent regulations in the sectorโs cybersecurity practices.
For more business News, checkย PGN Business Insider.