M&S left with empty shelves in food halls after cyber attack chaos > 자유게시판

An alleged cyber attack which has crippled Marks and Spencer has been linked to notorious teenage hacking gang, Scattered Spider. 

The retailer has been left reeling following the devastating hack which forced it to halt online sales for five days - with its share prices plummeting by more than £500m.

Now experts assisting M&S have claimed the cartel of cyber criminals - thought to be made up of British and American youths - could be behind the online security breach.

According to a report by the technology industry website BleepingComputer, the hackers have carried out a ransomware attack on the grocer's IT network. 

Scattered Spider uses the hacking tools developed by the Russia-linked group known as BlackCat and ALPHV, which may indicate a business partnership between the groups to share in ransom payments.

However, Investigators believe the attackers on this occasion used a hacking tool from a group known as DragonForce, which bills itself as a 'ransomware cartel', to carry out the breach. 

They gang has previously been linked with major hacks that incapacitated casino giants MGM Resorts International and Caesers Entertainment.

The group reportedly used a digital attack to knock out slot machines at MGM and disrupt other systems, while gang members raided personal details of customers in a separate incident at Caesers.  

The ransomware hack against M&S is understood to have locked down many of the retailer's systems.





An alleged cyber attack which has crippled Marks & Spencer has been linked to notorious teenage hacking gang, Scattered Spider (file image)





The alleged hack has cause mayhem for Marks & Spencer  which has been unable to process online orders for days now 

Ransomware attacks can happen when a criminal gang infiltrates a victim's IT infrastructure, using a computer virus to encrypt files and computers, before hackers then demand a ransom fee to unlock them. 

Such fees can run into the millions. 

The gang, also known as UNC3944, has hit telecom and business process outsourcing companies in the past, but more recently also targeted critical infrastructure organisations, according to analyst reports.

Charles Carmakal, chief technology officer at Mandiant Intelligence, called Scattered Spider 'one of the most prevalent and aggressive threat actors impacting organizations in the United States today.'

'Many members are native English speakers and are incredibly effective social engineers,' he wrote, referring to the tactic of duping human targets, including over the phone.

'They leverage tradecraft that is challenging for many organizations with mature security programs to defend against,' Carmakal said in a post on LinkedIn.

It's believed the hackers stole the M&S Windows domain's NTDS.dit file in February. The file is the main database used by Windows Active Directory to store domain information including user accounts, passwords and security data. 

In November, US officials charged five men aged between 20 and 25, of being members of Scattered Spider and carrying out the attack against MGM, which cost the company $100m (£75m), reports the Telegraph.

Last July, West Midlands police arrested a 17-year-old as part of an investigation into the hack. The teenager was released on bail. 

Following the alleged attack, some M&S stores have been left with empty shelves as the beleaguered retailer continues to battle with fallout of a crippling hack. 




The fallout from the alleged hack has left some M&S food hall stores with empty shelves 





Issues with distribution have reportedly affected stock levels in some M&S stores 





Customers have taken to social media to express their frustration over the disruption 

Shoppers have been left furious after some outlets were left 'completely empty', with items including bananas, fruit and vegetables, fish and Colin the Caterpillar cakes out of stock. 

Some sites have been so badly blighted by the lack of stock, they have reportedly been forced to display signs on hot food counters saying 'temporarily closed'. 

When asked, staff reportedly claimed the supply woes were linked to the suspected cyber attack, which has already forced M&S to cancel online orders.  

An M&S spokeswoman told MailOnline: 'As part of our proactive management of the incident, we took a decision to take some of our systems temporarily offline. 

'As a result, we currently have pockets of limited availability in some stores. We are working hard to get availability back to normal across the estate. 

Empty shelves are the latest warning sign that M&S is struggling to deal with aftermath of the alleged cyber attack over Easter. 

The woes began with the halting of click-and-collect orders and the downing of M&S contactless payment systems, which impacted stores nationwide over the bank holiday weekend. 

On Monday, shoppers were left unable to make purchases online for a fourth day. 

In a message on its website, M&S said the pause on orders was 'part of our proactive management of a cyber incident'. 

However, the retailer has so far not given an indication on when the chaos will end. 

Shoppers have been left increasingly outraged at the disruption, with some taking to social media to share their anger. 

One claimed to have driven an hour to an M&S store in Aberdeen, only to find shelves bare and items missing. 

'I appreciate the ongoing issues but M&S need to keep customers better informed,' they raged online. 

Another added: 'Monday afternoon and Live Draw Hk empty shelves in your @marksandspence Foyleside store! Now this is becoming a common issue with this store everytime I visit.'

Another disgruntled shopper wrote: 'When will online orders resume? I go on holiday at the weekend and have been waiting to order some clothes for my children.'




Marks and Spencer says it is battling to restore its services following the Easter cyber hack





Pictured is an empty shelf at one M&S store following the Easter cyber hack 

While others shared memes with the slogan: 'This is not just a cyber attack. This is an M&S cyber attack.'

M&S has insisted it will refund orders placed by customers on Friday, while those who want to collect orders made online are being urged to wait for an email telling them when to do so. 

As well as causing mayhem in stores, the aftermath of the suspected cyber attack also led to disruption for deliveries, workers said, with stores reportedly receiving fewer pallets that normal.

And on Monday, agency staff based at one of M&S's major distribution centres in the East Midlands were told to stay home, as the crisis continued to deepen. 

The mayhem has already seen M&S stock plunge three per cent this week, as the retailer grapples to regain control following the Easter weekend cyber 'incident'. 

Jane Foley head of FX strategy at Rabobank told BBC Radio 4 the fallout of the cyber attack against M&S had left shareholders spooked - with stock prices tumbling.

'Some investors are thinking enough is enough. About £700m has been wiped off the value Marks and Spencers on the stock market... they really do need to come through with some positive news fast to stop investors getting too nervous,' she said.

Nayna McIntosh , who spent 30 years in fashion retail including five as part of M&S's executive committee, said bosses at the struggling retail giant were in an 'unenviable position'.

'There will be some very difficult conversations taking place in Paddington,' she warned. 'I come at this as somebody who started my retail career as a Saturday girl more years than I care to think about, so I have a deep affection for the brand and this is really painful to see.'

Speaking of the continued decision to pause online orders as tech gurus continue to scramble to fix the cyber attack, she said: 'It's almost like cutting off one of your limbs.

'It's a third of their business and it is the disruption that it puts customers in and starts them asking questions.

'It will have been a very difficult decision to have made on Friday and as it enters a second week, for them still to be there will be incredibly painful.'

Nicholas Found, from Retail Economics, told the Telegraph: 'While the true cost will only be clear once the dust settles, it's likely to be costing Marks & Spencer seven figures per day, as digital channels have been offline for a prolonged period.'


Marks and Spencer