Close Menu
  • Home
  • AI Models
    • DeepSeek
    • xAI
    • OpenAI
    • Meta AI Llama
    • Google DeepMind
    • Amazon AWS AI
    • Microsoft AI
    • Anthropic (Claude)
    • NVIDIA AI
    • IBM WatsonX Granite 3.1
    • Adobe Sensi
    • Hugging Face
    • Alibaba Cloud (Qwen)
    • Baidu (ERNIE)
    • C3 AI
    • DataRobot
    • Mistral AI
    • Moonshot AI (Kimi)
    • Google Gemma
    • xAI
    • Stability AI
    • H20.ai
  • AI Research
    • Allen Institue for AI
    • arXiv AI
    • Berkeley AI Research
    • CMU AI
    • Google Research
    • Microsoft Research
    • Meta AI Research
    • OpenAI Research
    • Stanford HAI
    • MIT CSAIL
    • Harvard AI
  • AI Funding & Startups
    • AI Funding Database
    • CBInsights AI
    • Crunchbase AI
    • Data Robot Blog
    • TechCrunch AI
    • VentureBeat AI
    • The Information AI
    • Sifted AI
    • WIRED AI
    • Fortune AI
    • PitchBook
    • TechRepublic
    • SiliconANGLE – Big Data
    • MIT News
    • Data Robot Blog
  • Expert Insights & Videos
    • Google DeepMind
    • Lex Fridman
    • Matt Wolfe AI
    • Yannic Kilcher
    • Two Minute Papers
    • AI Explained
    • TheAIEdge
    • Matt Wolfe AI
    • The TechLead
    • Andrew Ng
    • OpenAI
  • Expert Blogs
    • François Chollet
    • Gary Marcus
    • IBM
    • Jack Clark
    • Jeremy Howard
    • Melanie Mitchell
    • Andrew Ng
    • Andrej Karpathy
    • Sebastian Ruder
    • Rachel Thomas
    • IBM
  • AI Policy & Ethics
    • ACLU AI
    • AI Now Institute
    • Center for AI Safety
    • EFF AI
    • European Commission AI
    • Partnership on AI
    • Stanford HAI Policy
    • Mozilla Foundation AI
    • Future of Life Institute
    • Center for AI Safety
    • World Economic Forum AI
  • AI Tools & Product Releases
    • AI Assistants
    • AI for Recruitment
    • AI Search
    • Coding Assistants
    • Customer Service AI
    • Image Generation
    • Video Generation
    • Writing Tools
    • AI for Recruitment
    • Voice/Audio Generation
  • Industry Applications
    • Finance AI
    • Healthcare AI
    • Legal AI
    • Manufacturing AI
    • Media & Entertainment
    • Transportation AI
    • Education AI
    • Retail AI
    • Agriculture AI
    • Energy AI
  • AI Art & Entertainment
    • AI Art News Blog
    • Artvy Blog » AI Art Blog
    • Weird Wonderful AI Art Blog
    • The Chainsaw » AI Art
    • Artvy Blog » AI Art Blog
What's Hot

Perplexity AI’s Plan for Search Ads Looks Nothing Like Google

Reka launches Nexus, an AI workforce powered by its state-of-the-art multimodal reasoning model | Taiwan News

Germany demands App Store ban over data violations

Facebook X (Twitter) Instagram
Advanced AI News
  • Home
  • AI Models
    • Amazon (Titan)
    • Anthropic (Claude 3)
    • Cohere (Command R)
    • Google DeepMind (Gemini)
    • IBM (Watsonx)
    • Inflection AI (Pi)
    • Meta (LLaMA)
    • OpenAI (GPT-4 / GPT-4o)
    • Reka AI
    • xAI (Grok)
    • Adobe Sensi
    • Aleph Alpha
    • Alibaba Cloud (Qwen)
    • Apple Core ML
    • Baidu (ERNIE)
    • ByteDance Doubao
    • C3 AI
    • DataRobot
    • DeepSeek
  • AI Research & Breakthroughs
    • Allen Institue for AI
    • arXiv AI
    • Berkeley AI Research
    • CMU AI
    • Google Research
    • Meta AI Research
    • Microsoft Research
    • OpenAI Research
    • Stanford HAI
    • MIT CSAIL
    • Harvard AI
  • AI Funding & Startups
    • AI Funding Database
    • CBInsights AI
    • Crunchbase AI
    • Data Robot Blog
    • TechCrunch AI
    • VentureBeat AI
    • The Information AI
    • Sifted AI
    • WIRED AI
    • Fortune AI
    • PitchBook
    • TechRepublic
    • SiliconANGLE – Big Data
    • MIT News
    • Data Robot Blog
  • Expert Insights & Videos
    • Google DeepMind
    • Lex Fridman
    • Meta AI Llama
    • Yannic Kilcher
    • Two Minute Papers
    • AI Explained
    • TheAIEdge
    • Matt Wolfe AI
    • The TechLead
    • Andrew Ng
    • OpenAI
  • Expert Blogs
    • François Chollet
    • Gary Marcus
    • IBM
    • Jack Clark
    • Jeremy Howard
    • Melanie Mitchell
    • Andrew Ng
    • Andrej Karpathy
    • Sebastian Ruder
    • Rachel Thomas
    • IBM
  • AI Policy & Ethics
    • ACLU AI
    • AI Now Institute
    • Center for AI Safety
    • EFF AI
    • European Commission AI
    • Partnership on AI
    • Stanford HAI Policy
    • Mozilla Foundation AI
    • Future of Life Institute
    • Center for AI Safety
    • World Economic Forum AI
  • AI Tools & Product Releases
    • AI Assistants
    • AI for Recruitment
    • AI Search
    • Coding Assistants
    • Customer Service AI
    • Image Generation
    • Video Generation
    • Writing Tools
    • AI for Recruitment
    • Voice/Audio Generation
  • Industry Applications
    • Education AI
    • Energy AI
    • Finance AI
    • Healthcare AI
    • Legal AI
    • Media & Entertainment
    • Transportation AI
    • Manufacturing AI
    • Retail AI
    • Agriculture AI
  • AI Art & Entertainment
    • AI Art News Blog
    • Artvy Blog » AI Art Blog
    • Weird Wonderful AI Art Blog
    • The Chainsaw » AI Art
    • Artvy Blog » AI Art Blog
Facebook X (Twitter) Instagram
Advanced AI News
Retail AI

A UK retail cyberattack campaign is headed to the US, researcher warns

Advanced AI EditorBy Advanced AI EditorMay 15, 2025No Comments4 Mins Read
Share Facebook Twitter Pinterest Copy Link Telegram LinkedIn Tumblr Email
Share
Facebook Twitter LinkedIn Pinterest Email


A cybercrime gang believed to be responsible for three recent cyberattacks on U.K. retailers has turned its attention toward the U.S. and has compromised multiple targets in the sector, according to researchers from Google Threat Intelligence Group and Google subsidiary Mandiant. 

Researchers said the same threat actors linked to attacks against U.K. companies are now using well-crafted social engineering techniques against U.S. retail companies.  

The threat group, tracked as UNC3944 or Scattered Spider, is widely considered the prime suspect in the attacks on British firms Harrods, Co-op and M&S, but Mandiant and Google have not formally attributed the intrusions to any specific actor.

Researchers said, however, that the hackers behind the U.S. attacks share the same techniques and procedures as the intruders in the U.K. incidents.

“The actor, which has reportedly targeted retail in the U.K. following a long hiatus, has a history of focusing their efforts on a single sector at a time, and we anticipate they will continue to target the sector in the near term. US retailers should take note,” said John Hultquist, chief analyst of Google’s Threat Intelligence Group, in a statement.

Hultquist on Wednesday warned retailers in a post on X to prepare themselves for attacks by the threat group.

Google researchers said a lack of visibility into the U.K. incidents — which are being investigated by a different incident response firm — is preventing them from making a formal attribution in those cases. Earlier this month, Mandiant released guidance on how to harden network systems against known Scattered Spider techniques, but cautioned they are not making any formal link to the U.K. attacks. 

Officials from Kroll confirmed they currently are responding to companies that have been targeted using the same techniques. 

“Kroll is actively working with clients in the retail sector to defend against attacks that match patterns of activity and indicators that match the actor we track as KTA243 (Aka Scattered Spider, Oktapus),” said Keith Wojcieszek, managing director of global threat intelligence, via email. 

Scattered Spider rose to fame in recent years largely due to successful social-engineering attacks against high-profile targets, including MGM Resorts in Las Vegas. Scattered Spider is mainly comprised of young, male, English-speaking hackers from the U.S. and U.K. who have perfected a technique of using deceptive phishing attacks to breach corporate computer networks.

Charles Carmakal, CTO of Mandiant Consulting, confirmed to Cybersecurity Dive that the actors suspected in the U.S. attacks are calling help desks to trick workers into resetting passwords. Hultquist said some of these attacks have been successful but declined to provide specific details about targeted organizations. 

The Retail & Hospitality ISAC, a threat information sharing group, said it was aware of the threats related to Scattered Spider but was unable to share specifics. 

“We are tracking these incidents and publishing updates and guidance for our member companies, as well as collaborating with Google on a threat briefing,” Pam Lindemoen, chief security officer at RH-ISAC, told Cybersecurity Dive.

The U.K. attacks have resulted in considerable disruption. M&S earlier this week confirmed that customer data was stolen in that attack, though it cautioned that payment-card information was masked and not usable.

Co-op on Wednesday said hackers launched sustained attempts to crack its systems and gained access to customer data, with the resulting attack leading to major inventory shortages at many of its 2,300 grocery locations. Co-op is beginning to restore its computer systems in a controlled manner and plans to distribute fresh produce and chilled and frozen foods this weekend in order to refill store shelves that have seen limited supplies since earlier this month. 

Attributing the attacks to Scattered Spider has been difficult, in part because the three retailers have provided limited information about how the attacks took place. U.K. authorities have been working with them to learn more about how the hackers gained access. 

The ransomware-as-a-service group DragonForce has claimed credit for the U.K. attacks, adding another layer of difficulty to the attribution process. DragonForce provides encryption tooling and a dark-web site for attacks that contracted hackers carry out, according to GuidePoint Security. 



Source link

Follow on Google News Follow on Flipboard
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email Copy Link
Previous Article[2505.09477] Deploying Foundation Model-Enabled Air and Ground Robots in the Field: Challenges and Opportunities
Next Article GPT-4.1 is now available in ChatGPT
Advanced AI Editor
  • Website

Related Posts

Few consumers trust retailers to use their data responsibly, research finds

July 1, 2025

Consumers want more value — beyond low prices

July 1, 2025

Customers are ditching Shein and Temu. Can Amazon win them over?

July 1, 2025
Leave A Reply Cancel Reply

Latest Posts

UK MPs to Debate Banning Advertising by Oil Companies

Albright College is Selling Its Art Collection to Balance Its Books

Big Three Auction Houses Hold Old Masters Sales in London This Week

MFA Boston Returns Two Works to Kingdom of Benin

Latest Posts

Perplexity AI’s Plan for Search Ads Looks Nothing Like Google

July 7, 2025

Reka launches Nexus, an AI workforce powered by its state-of-the-art multimodal reasoning model | Taiwan News

July 7, 2025

Germany demands App Store ban over data violations

July 7, 2025

Subscribe to News

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

Recent Posts

  • Perplexity AI’s Plan for Search Ads Looks Nothing Like Google
  • Reka launches Nexus, an AI workforce powered by its state-of-the-art multimodal reasoning model | Taiwan News
  • Germany demands App Store ban over data violations
  • Huawei-Alibaba Clash Heats Up On AI Model Plagiarism Allegations – Alibaba Gr Hldgs (NYSE:BABA)
  • Alphabet’s Isomorphic Labs Gets Set for Human Trials of AI-Designed Drugs

Recent Comments

No comments to show.

Welcome to Advanced AI News—your ultimate destination for the latest advancements, insights, and breakthroughs in artificial intelligence.

At Advanced AI News, we are passionate about keeping you informed on the cutting edge of AI technology, from groundbreaking research to emerging startups, expert insights, and real-world applications. Our mission is to deliver high-quality, up-to-date, and insightful content that empowers AI enthusiasts, professionals, and businesses to stay ahead in this fast-evolving field.

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

YouTube LinkedIn
  • Home
  • About Us
  • Advertise With Us
  • Contact Us
  • DMCA
  • Privacy Policy
  • Terms & Conditions
© 2025 advancedainews. Designed by advancedainews.

Type above and press Enter to search. Press Esc to cancel.