A major cyberattack targeted UK retailer Co-op, resulting in the theft of personal data for 6.5 million members. The attack was linked to threat actors associated with Scattered Spider and involved the deployment of DragonForce ransomware. #ScatteredSpider #DragonForce
Keypoints
- The cyberattack on Co-op occurred in April and involved the theft of sensitive member contact information.
- Threat actors gained access through social engineering, resetting an employeeβs password.
- The attackers stole the Windows NTDS.dit file, which contains password hashes for Windows accounts.
- Membersβ financial and transaction data were not compromised during the breach.
- Four suspects linked to the attack were arrested by the UKβs National Crime Agency, some with connections to other significant cyberattacks.