Us, July 15 -- This cyber attack serves as a stark reminder of the evolving and increasingly complex threat landscape businesses face today.

The recent cyberattack on 'Marks & Spencer' was a sophisticated and highly disruptive ransomware incident, primarily attributed to the notorious cybercrime group Scattered Spider (aka UNC3944, Star Fraud, Octo Tempest, etc) that reportedly utilized the DragonForce ransomware payload. Let's understand how the attack unfolded.

Initial access through social engineering

The attack began as early as February 2025, indicating a period of reconnaissance and initial infiltration before the full-scale ransomware deployment. The key entry vector was social engineering, particularly targeting IT help desks....