Aggressive hackers of UK retailers are now targeting US stores, says Google
Guardian2 days
Google Warns US Retailers of UK Hack Group's New Threat
Above: The Google Chrome logo is visible with a person holding a phone in Knurow, Poland, on April 20, 2025. Image copyright: Klaudia Radecka/Contributor/NurPhoto via Getty Images
The Spin
Narrative A
The recent cyberattacks by Scattered Spider on Marks & Spencer, Co-op, and Harrods highlight serious vulnerabilities in the retail sector, even with strong defenses. Hackers are using deceptive tactics like social engineering to cause major disruptions. With Google warning that U.S. companies could be next, American retailers must quickly strengthen their security and prepare for these growing threats. Cross-border cooperation is now essential.
Narrative B
Scattered Spider's threat is often overstated, with the cybersecurity industry framing them as highly sophisticated hackers. In reality, their tactics — relying on social engineering, phishing, and exploiting known vulnerabilities — are far from groundbreaking. Google's warning about their potential shift to U.S. retail highlights the need for caution, but authorities should be able to counter these simple, volume-based attacks effectively.
Narrative C
Scattered Spider's links to DragonForce — a ransomware group aligned with Russian interests — suggest future attacks may be politically motivated, not just financially. By forbidding hits on former Soviet states and threatening violators, the group signals a clear geopolitical allegiance. With U.S. retailers now in their crosshairs, these operations may serve Moscow's interests by proxy, blurring the line between cybercrime and state-backed sabotage.