Marks & Spencer suffered a cyber-incident earlier in April
The media are saying the attack was the work of ScatteredSpider
The retailer is still tackling the outage
The major cyber-incident at British Retailer Marks & Spencer, which has been ongoing for more than a week now, seems to be the work of Scattered Spider, an infamous and slippery threat actor. The news was broken by BleepingComputer, citing “multiple sources” and claiming this was a ransomware attack. The company itself did not want to comment on the information, though.
In late April, news broke of a “cyber incident” that affected M&S stores for “days” and resulted in “small changes” to store operations. The company also confirmed Click and Collect services were impacted, and that some stores were unable to process contactless payments.
