M&S cyber attack is linked to gang of teenage hackers called 'Scattered Spider' who also targeted casino giant MGM
An alleged cyber attack which has crippled Marks and Spencer has been linked to notorious teenage hacking gang, Scattered Spider.
The retailer has been left reeling following the devastating hack which forced it to halt online sales for five days - with its share prices plummeting by more than £500m.
Now experts assisting M&S have claimed the cartel of cyber criminals - thought to be made up of British and American youths - could be behind the online security breach.
Scattered Spider uses the hacking tools developed by the Russia-linked group known as BlackCat and ALPHV, which may indicate a business partnership between the groups to share in ransom payments.
They have previously been linked with major hacks that incapacitated casino giants MGM Resorts International and Caesers Entertainment.
The group reportedly used a digital attack to knock out slot machines at MGM and disrupt other systems, while gang members raided personal details of customers in a separate incident at Caesers.
The ransomware hack against M&S is understood to have locked down many of the retailer's systems, reports the Telegraph.
Ransomware attacks can happen when a criminal gang infiltrates a victim's IT infrastructure, using a computer virus to encrypt files and computers, before hackers then demand a ransom fee to unlock them.
An alleged cyber attack which has crippled Marks and Spencer has been linked to notorious teenage hacking gang, Scattered Spider.
Such fees can run into the millions.
The gang, also known as UNC3944, has hit telecom and business process outsourcing companies in the past, but more recently also targeted critical infrastructure organisations, according to analyst reports.
Charles Carmakal, chief technology officer at Mandiant Intelligence, called Scattered Spider 'one of the most prevalent and aggressive threat actors impacting organizations in the United States today.'
'Many members are native English speakers and are incredibly effective social engineers,' he wrote, referring to the tactic of duping human targets, including over the phone.
'They leverage tradecraft that is challenging for many organizations with mature security programs to defend against,' Carmakal said in a post on LinkedIn.
Following the alleged attack, some M&S stores have been left with empty shelves as the beleaguered retailer continues to battle with fallout of a crippling hack.
Shoppers have been left furious after some outlets were left 'completely empty', with items including bananas, fruit and vegetables, fish and Colin the Caterpillar cakes out of stock.
Some sites have been so badly blighted by the lack of stock, they have reportedly been forced to display signs on hot food counters saying 'temporarily closed'.
When asked, staff reportedly claimed the supply woes were linked to the suspected cyber attack, which has already forced M&S to cancel online orders.
An M&S spokeswoman told MailOnline: 'As part of our proactive management of the incident, we took a decision to take some of our systems temporarily offline.
'As a result, we currently have pockets of limited availability in some stores. We are working hard to get availability back to normal across the estate.
Empty shelves are the latest warning sign that M&S is struggling to deal with aftermath of the alleged cyber attack over Easter.
The woes began with the halting of click-and-collect orders and the downing of M&S contactless payment systems, which impacted stores nationwide over the bank holiday weekend.
On Monday, shoppers were left unable to make purchases online for a fourth day.
In a message on its website, M&S said the pause on orders was 'part of our proactive management of a cyber incident'.
However, the retailer has so far not given an indication on when the chaos will end.
Shoppers have been left increasingly outraged at the disruption, with some taking to social media to share their anger.
One claimed to have driven an hour to an M&S store in Aberdeen, only to find shelves bare and items missing.
'I appreciate the ongoing issues but M&S need to keep customers better informed,' they raged online.
Another added: 'Monday afternoon and empty shelves in your @marksandspence Foyleside store! Now this is becoming a common issue with this store everytime I visit.'
Another disgruntled shopper wrote: 'When will online orders resume? I go on holiday at the weekend and have been waiting to order some clothes for my children.'
While others shared memes with the slogan: 'This is not just a cyber attack. This is an M&S cyber attack.'
M&S has insisted it will refund orders placed by customers on Friday, while those who want to collect orders made online are being urged to wait for an email telling them when to do so.
As well as causing mayhem in stores, the aftermath of the suspected cyber attack also led to disruption for deliveries, workers said, with stores reportedly receiving fewer pallets that normal.
And on Monday, agency staff based at one of M&S's major distribution centres in the East Midlands were told to stay home, as the crisis continued to deepen.
The mayhem has already seen M&S stock plunge three per cent this week, as the retailer grapples to regain control following the Easter weekend cyber 'incident'.
Jane Foley head of FX strategy at Rabobank told BBC Radio 4 the fallout of the cyber attack against M&S had left shareholders spooked – with stock prices tumbling.
'Some investors are thinking enough is enough. About £700m has been wiped off the value Marks and Spencers on the stock market... they really do need to come through with some positive news fast to stop investors getting too nervous,' she said.
Nayna McIntosh , who spent 30 years in fashion retail including five as part of M&S's executive committee, said bosses at the struggling retail giant were in an 'unenviable position'.
'There will be some very difficult conversations taking place in Paddington,' she warned. 'I come at this as somebody who started my retail career as a Saturday girl more years than I care to think about, so I have a deep affection for the brand and this is really painful to see.'
Speaking of the continued decision to pause online orders as tech gurus continue to scramble to fix the cyber attack, she said: 'It's almost like cutting off one of your limbs.
'It's a third of their business and it is the disruption that it puts customers in and starts them asking questions.
'It will have been a very difficult decision to have made on Friday and as it enters a second week, for them still to be there will be incredibly painful.'
Nicholas Found, from Retail Economics, told the Telegraph: 'While the true cost will only be clear once the dust settles, it's likely to be costing Marks & Spencer seven figures per day, as digital channels have been offline for a prolonged period.'
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Daily Mirror
31 minutes ago
- Daily Mirror
People with these surnames in UK could have unclaimed estates
You should check to see if your family name is on the list You may want to check if your name is on a new list that has just been released, shwoing a number of estates in England and Wales that are unclaimed. According to the UK Government's latest update on May 19, 2025, there are over 6,000 names on the Bona Vacantia Division's register. These estates often have savings, property and other assets which can be legally claimed by living relatives. However, this can only happen if the family comes forward in time. Because of this time-sensitive deadline, Darren Gallagher, property expert and founder of Elite Realty Invest, is encouraging the public to check whether their family name appears on the list. He stresses that many people are unaware they could be entitled to an inheritance saying: 'Most people don't know they could be the rightful heir to an estate, especially if a distant relative died without a will. "We see this time and time again - properties, cash, assets – all left in limbo because nobody thought to check.' Most Common Surnames with Unclaimed Estates - 2025 The team at Elite Realty Invest have dug into the data and listed the top 10 British surnames with unclaimed estates in 2025 Rank Surname Approx. Number of Unclaimed Estates 1 Smith 129 2 Jones 86 3 Taylor 54 4 Brown 50 5 Williams 45 6 Johnson 40 7 Davies 38 8 Evans 35 9 Thomas 33 10 Roberts 30 This table represents just a small number of people on the list - and there are many more that could be sitting on an unclaimed estate and not know it. The property expert explained that when someone passes away and they do not have will and no known next of kin, their estate is held by the Crown for up to 30 years and during this period, eligible relatives have the legal right to claim their inheritance. Am I eligible? Gallagher concludes: "This isn't just a legal loophole - it's people's legacy. We help individuals identify legitimate claims and take the pressure off what can feel like a complex system."
Daily Mirror
an hour ago
- Daily Mirror
Silent tower fan with 12 speed settings has price drop in offer
The Levoit has 12 speed settings and can be controlled via an app on a user's mobile Summer is in full swing, and in true British form, it's a mixture of blustery showers, humidity and heatwaves. Homeowners looking to upgrade their fan can find a deal on a best-selling device on Amazon. The Levoit Smart Silent Tower is 42 inches in height, has 12 speed settings and four modes. Usually priced at £119.99, it is being offered for £94.99 in a limited flash sale. It also has a smartphone control feature, so it can be operated from the comfort of the sofa. Or, if an owner is sitting in another room or they have left the house and forgotten to switch it off, they can do so using their phone. The Levoit Smart Silent Tower also promises 'minimal noise levels' and has an Advanced Sleep Mode in which users can tailor the speed and customise sleep settings. The fan has more than 24,000 Amazon reviews and ratings. One reviewer said: "Good size and amazingly quiet and efficient. Very sturdy once built. Simple to operate and can be used with the panel or the controller." They continued: "I like the nighttime mode, which switches off the display and varies the fan speed to reduce noise. Altogether great value for money and very useful for hot summers." A second buyer wasn't too happy with their purchase, saying: "I have used it for a few weeks and vacuumed filter multiple times. The downside is that it is kicking back dust on the walls all around it, so 5/10." A bladeless fan can resolve the issue of built-up dust. For instance, this Pro Breeze Premium Bladeless Tower Fan and Air Purifier is on sale for £169.99. It is designed with a powerful motor and HEPA13 filter, removing pollutants from the air while cooling users down. Elsewhere, Argos is selling a Bush Black Pedestal for £50. It has three speed settings, a remote control, and two height settings, so it can be turned from a floor fan to a desk fan. Returning to Levoit's Smart Silent Tower, a third user described it as a 'game-changer', 'worth every penny', and as one of the 'quietest fans I've ever owned.' They continued: "It cools the room down quickly, and the best feature is the night mode, which automatically adjusts to the room's temperature as it gets cooler or hotter. Also, when you switch it off, it will automatically go back to the last setting you had on. Great piece of kit. I bought mine on five easy payments. And I said, well worth the money." Another buyer concluded: "Wow! This fan is super quiet. Perfect for the bedroom at night. The functions are great and easy to use. "There are 12 speed settings and an oscillating setting. Night mode turns off the display after a few seconds. Timer mode. It also has a remote. Great design. Well worth the money."
Powys County Times
3 hours ago
- Powys County Times
Business Secretary meeting Lotus after reports of plans to scrap UK carmaking
The Business Secretary will hold talks with Lotus after the carmaker appeared to shelve plans to shut its UK operations. After reports that Chinese owner Geely was planning to stop manufacturing at the Hethel plant in Norfolk, putting 1,300 jobs at risk, Lotus issued a statement saying it had 'no plans' to close the factory. Jonathan Reynolds will speak to the company on Sunday, the PA news agency understands. The British sportscar brand has been majority-owned by Chinese multinational Geely since 2017. The Financial Times had reported it was considering shutting up shop in the UK and in favour of a new plant in the US. On Saturday, Lotus sought to assuage concerns with a statement that it remains 'committed' to the UK, which it called its largest commercial market in Europe and the 'heart' of the brand. 'Lotus Cars is continuing normal operations, and there are no plans to close the factory,' it said. 'We are actively exploring strategic options to enhance efficiency and ensure global competitiveness in the evolving market. 'We have invested significantly in R&D and operations in the UK, over the past six years. Lotus remains committed to the UK, and its customers, employees, dealers, suppliers, as well as its proud British heritage.'
