四名年轻人被英国警方逮捕,涉嫌参与Scattered Spider黑客组织对Marks & Spencer、Co-op和Harrods等零售商的网络攻击。其中最严重的是M&S在4月遭受的勒索软件攻击,导致其在线服装销售暂停近七周,并损失约3亿英镑的运营利润。 2025-7-10 16:30:27 Author: securityboulevard.com(查看原文) 阅读量:7 收藏
Three teenage males and a young woman hauled away by cops, suspected of hacking huge retailers.
Four youngsters are in custody today, alleged to be the notorious Scattered Spider hackers (or at least, some of them). The “loose affiliation” of hackers is suspected of badly disrupting operations at three large retail chains since April.
The four are innocent until proven guilty. In today’s SB Blogwatch, we channel Sir William Garrow.
Your humble blogwatcher curated these bloggy bits for your entertainment. Not to mention: Lego cheeseburger.
Alleged Arachnid Arrests
What’s the craic? James Davey and Sam Tabahriti report: UK police arrest four over cyberattacks
“Marks & Spencer, the Co-op and Harrods”
Britain’s National Crime Agency said on Thursday [three] males aged 19, 19 and 17 and a 20-year-old woman had been detained in the English West Midlands and London on suspicion of Computer Misuse Act offences, blackmail, money laundering and participating in organised crime. All were arrested at home, had their electronic devices seized, and were being questioned by the NCA’s National Cyber Crime Unit.
…
[It is] part of a police investigation into cyberattacks that disrupted the operations of UK retailers Marks & Spencer, the Co-op and Harrods. … April’s ransomware attack on M&S, one of the best known names in British business, was the most serious, forcing it to suspend online clothing shopping for nearly seven weeks and costing it about 300 million pounds ($400 million) in operating profit.
Are they part of Scattered Spider? Laura Onita, Suzi Ring and Philip Stafford speak to a deep throat: UK crime agency arrests 4 people
“M&S thanked the NCA”
The people are believed to be linked to the cyber criminal group Scattered Spider, according to a person with knowledge of the situation. … Unlike some ransomware gangs, Scattered Spider is a loose group of affiliates. The group — characterised by cyber security experts as male, trash-talking, English-speaking fraudsters — typically steals data for the purpose of extortion.
…
The NCA declined to comment on the affiliation of those arrested. M&S thanked the NCA “for its diligent work on this incident”. The Co-op said: “Hacking is not a victimless crime. … We have engaged fully with the NCA and relevant authorities and are pleased … to see this had led to these arrests today.”
So they’re all Brits? Not exactly, according to Alexander Martin: Four arrested by UK police
“One of the Agency’s highest priorities”
All four are now in custody. … The individuals are a 20-year-old British woman from Staffordshire, a 19-year-old Latvian male from the West Midlands, a 19-year-old British man from London and a 17-year-old British male from the West Midlands.
…
“Since these attacks took place, specialist NCA cybercrime investigators have been working at pace and the investigation remains one of the Agency’s highest priorities,” said Paul Foster, the head of the NCA’s National Cyber Crime Unit. “Today’s arrests are a significant step in that investigation but our work continues, alongside partners in the UK and overseas, to ensure those responsible are identified and brought to justice. … Hopefully this signals to future victims the importance of seeking support and engaging with law enforcement as part of the reporting process.”.
Did they do it, though? Chris Stokel-Walker rightly assumes innocence:
These arrests are only on suspicion of offences of course. But regardless of those arrested’s innocence or guilt, the speed at which arrests have come is really quick compared to previous allegations around cybercrime.
Pesky kids. Won’t Paul Bernal think of the children?
So often the suggestion is made that these are ‘sophisticated’ hacks from foreign hacking teams, but the reality is often … kids.
But smarter than script kiddies? Yes, of course, thinks Anthony, of course:
As someone who was involved with a UK schools programme to get teenagers into cyber security, I can say with absolute certainty that … just because they’re young doesn’t mean that it wasn’t sophisticated. Doesn’t mean it was, either, but some kids are ridiculously talented.
Is it reasonable to do some victim blaming? Yes, says this Anonymous Coward:
How in hell, these days, is this sort of thing possible? We all know about ransomware attacks. We all know we might be forced into a bare-metal restore of some or all of our systems. How is it possible that these sort of attacks can cause the sort of disruption they do?
Of course proper, real-time, bare-metal-restore-ready backups are a pain: they’re expensive, they potentially force users into ways of working they may prefer not to have to cope with, and so on. But if the alternative is that your business loses £300m+, that’s a pretty small price to pay.
The moral of the story? Catalin Cimpanu draws this lesson:
These arrests are the definition of, “Don’t **** where you eat.”
Meanwhile, Kevin Beaumont reminds us what he said a couple of months ago:
You aren’t going to get owned by quantum dark blockchain AI. You’re going to get owned by somebody with a British accent phoning up your Service Desk at 2pm on a Friday with a kebab in their mouth.
And Finally:
What could you do with this much free time?
You have been reading SB Blogwatch by Richi Jennings. Richi curates the best bloggy bits, finest forums, and weirdest websites—so you don’t have to. Hate mail may be directed to @RiCHi, @richij, @[email protected], @richi.bsky.social or [email protected]. Ask your doctor before reading. Your mileage may vary. Past performance is no guarantee of future results. Do not stare into laser with remaining eye. E&OE. 30.
Image sauce: Aritras Saha (via Unsplash; leveled and cropped)
Recent Articles By Author
如有侵权请联系:admin#unsafe.sh