‘Mischief before money’: inside the M&S hackers’ hunt for new targets
The hacking group that pierced the online defences of UK retailer Marks and Spencer has spent months this year laying digital traps designed to trick employees at the world’s biggest brands into giving up their passwords.
Scattered Spider — which cyber security experts describe as a criminal gang of male trash-talking, English-speaking fraudsters — was observed registering websites with nearly identical company names and sharpening their malware tool kits.
But their signature move is to exhaustively research company employees, successfully impersonating them on a phone call, and trick other colleagues into handing over the information needed to trigger a cyber attack.
The mix of online traps and real world subterfuge has resulted in some of the most famous hacks of recent years, including the 2023 attack on MGM казина и курорти в Лас Вегас, които затварят хотели по известната лента на града.
Те пробиха в M&S предишния месец, като забиха търговците на Обеди...
Прочетете целия текст »
