Woman and three teenagers arrested after M&S, Co-op and Harrods cyber attacks

Jul 12, 2025 UK News views: 209

The supermarket chain took weeks to recover from the incident (Picture: Reuters)

Four people have been arrested after a wave of cyber attacks struck Marks & Spencer,Co-op and Harrods this year.

A woman and three teenagers were arrested early yesterday morning on suspicion of blackmail,money laundering,offences linked to the Computer Misuse Act and participating in the activities of an organised crime group.

The arrests included a British man,17,from the West Midlands,a Latvian man,19,a British man,from London and a 20-year-old British woman from Staffordshire.

All four were arrested at their homes and had their electronic devices seized for digital forensic analysis. They remain in custody.

M&S was hit by a ‘highly sophisticated’ cyber breach that crippled operations over the Easter weekend.

Sign up for all of the latest stories

Start your day informed with Metro's News Updates newsletter or get Breaking News alerts the moment it happens.Some customer data was stolen,the retailer said,and thieves may have gained access to personal information,such as contact details and birthdates. Card details and passwords were not compromised.Food deliveries,click and collect services and online orders were upended for weeks,while shoppers were greeted by empty shelves.Empty shelves in the branch of the Co-op in Manchester following the major cyber attack (Picture: Danny Lawson/PA Wire)Online orders were knocked out by the cyber attack (Picture: Yui Mok/PA Wire)M&S said that while most operations are back to normal,the saga has cost the company £300,000,000.The cyber attack happened because of human error,with hackers gaining access through social engineering tricks via a third-party supplier,the retailer said.Co-op had to shut down its IT systems in April to prevent hackers from snatching information like shopper passwords and bank details.Cyber crooks attempted to gain access to Harrods in May,with the luxury department store briefly restricting internet access in its London store and offices.One in five businesses in the UK has been a victim of at least one cybercrime in the past year,according to official figures.One of the hacker groups being investigated for the attacks is Scattered Spider,an elusive group known for tricking people into providing their credentials to break into a company’s computer network. Once inside,the hackers infect the system with malware,which they say can be removed for a ransom.Harrods in London had to limit internet access following the attempted breach (Picture: Reuters)Scattered Spider,also called UNC3944,is believed to mainly consist of teenagers living in the UK and US.Fergus Hay,CEO at the recruitment platform The Hacking Games,told Metro that behind many cyber breaches are teenagers,‘and behind them is a story of missed opportunity’.‘What we’re dealing with isn’t just a wave of cybercrime. It’s a youth crisis. Kids are being groomed online by criminal gangs,drawn in through gaming forums and Discord servers,’ Hay added.‘It starts with curiosity,and before long,they’re doing real harm to real people without fully understanding the consequences.’Paul Foster,head of the National Crime Agency’s (NCA) National Cyber Crime Unit,said: ‘Since these attacks took place,specialist NCA cybercrime investigators have been working at pace and the investigation remains one of the agency’s highest priorities.‘Today’s arrests are a significant step in that investigation,but our work continues,alongside partners in the UK and overseas,to ensure those responsible are identified and brought to justice.’

Login

Register

Contribute

United News delivers authoritative global news with African and global insights. Breaking coverage on politics, human rights, environmental crises and social justice. Trusted journalism from Johannesburg to the world.

Politics & Conflicts

Business

Environment

Rights & Justice

United News - unews.co.za