Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

Four Arrested in £440M Cyber Attack

July 11, 2025
Reading Time: 3 mins read
in News
Lovestruck Airman Leaks Secrets on App

The U.K. National Crime Agency (NCA) announced the arrest of four individuals in connection with significant cyber attacks that targeted major retailers Marks & Spencer, Co-op, and Harrods. The apprehended suspects include two 19-year-old men, a 17-year-old, and a 20-year-old woman, who were taken into custody in the West Midlands and London. They face charges including Computer Misuse Act offenses, blackmail, money laundering, and participation in an organized crime group. Electronic devices were seized from their homes for forensic analysis, and their identities have not yet been disclosed. The NCA emphasizes that this investigation remains a top priority, and efforts are ongoing to identify and prosecute all responsible parties.

The cyber attacks, which occurred in April 2025, have been classified as a “single combined cyber event” by the Cyber Monitoring Centre (CMC), with an estimated financial impact ranging from £270 million to £440 million. While the NCA did not explicitly name the organized crime group involved, it is widely believed that the attacks were perpetrated by Scattered Spider, a decentralized cybercrime crew known for its advanced social engineering techniques and deployment of ransomware. Marks & Spencer, during a U.K. Parliament hearing, specifically identified the DragonForce ransomware group, working with other “loosely aligned” actors, as responsible for the attack on their systems.

Scattered Spider is particularly notable for its reliance on sophisticated social engineering tactics and persistent efforts to gain initial access to target organizations, even those with robust security programs.

Their success stems not from novel tactics, but from their expertise in manipulating individuals. The group is largely composed of young, native English speakers, which provides them an advantage in building trust through fake calls to IT help desks, posing as legitimate employees. This method allows them to bypass security measures and gain credentials.

Scattered Spider is part of a larger, loose-knit collective known as The Com, which is responsible for a wide array of criminal activities beyond cyber attacks, including phishing, SIM swapping, extortion, and even more violent crimes like swatting, kidnapping, and murder. Their targeting strategy is described as calculated and opportunistic, shifting across industries and geographies based on visibility, potential payout, and operational heat. They employ consistent core tactics, techniques, and procedures, such as setting up deceptive phishing domains that mimic legitimate corporate login portals to trick employees into revealing credentials.

The arrests of the alleged Scattered Spider members are being hailed as a significant victory in the fight against e-crime, underscoring the crucial role of international collaboration. Previous arrests have reportedly impacted Scattered Spider’s operations, causing periods of reduced activity. Independent cybersecurity journalist Brian Krebs identified two of the arrested 19-year-olds as Owen David Flowers and Thalha Jubair, with Jubair also being linked to the LAPSUS$ cybercrime group and the administration of Doxbin. Experts caution that Scattered Spider’s reliance on voice communication for phishing calls exposes their members to easier tracking and investigation, leading to a “get-put-in-jail-quick scheme” for young participants.

Reference:

  • Four arrested in £440M cyber attack targeting Marks & Spencer, Co-op, and Harrods.
Tags: Cyber NewsCyber News 2025Cyber threatsJuly 2025
ADVERTISEMENT

Related Posts

North Korean Hackers Steal Crypto

Google Launches New AI Bug Bounty

October 10, 2025
North Korean Hackers Steal Crypto

DragonForce LockBit Qilin Dominate Ransomware

October 10, 2025
North Korean Hackers Steal Crypto

North Korean Hackers Steal Crypto

October 10, 2025
FBI Shuts Down BreachForums Portal

FBI Shuts Down BreachForums Portal

October 10, 2025
FBI Shuts Down BreachForums Portal

OpenAI Blocks Hackers Misusing ChatGPT

October 10, 2025
FBI Shuts Down BreachForums Portal

Defender Mistakenly Flags SQL Server

October 10, 2025

Latest Alerts

BatShadow Unleashes Go Vampire Bot

Hackers Exploit Service Finder Flaw

FileFix Attack Evades Security Tools

Hackers Abuse WordPress for Phishing

Severe Framelink Figma MCP Code Flaw

Android Spyware ClayRat Imitates Apps

Subscribe to our newsletter

    Latest Incidents

    Crimson Collective Hits AWS Instances

    GitHub Copilot Chat Flaw Leaks Repo Data

    Microsoft 365 Outage Hits Services

    Dozens Hit in Oracle-Linked Hacks

    BK Technologies Admits Cyber Breach

    Chinese Hackers Hit Williams Connolly

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial