In response to a series of cyberattacks targeting major UK retailers, including Marks & Spencer, Co-op, and Harrods, the National Cyber Security Centre (NCSC) has issued crucial cybersecurity guidelines for organizations. These breaches, linked to the DragonForce group, highlight significant vulnerabilities in retail cybersecurity defenses. Affected: Major UK Retailers
Keypoints :
- NCSC warns all companies to bolster cybersecurity after high-profile attacks on UK retailers.
- Marks & Spencer experienced a ransomware attack disrupting online services, while Co-op confirmed customer data theft after an attack.
- Harrods faced a potential breach but no confirmed data loss; attacks were attributed to the DragonForce operation.
- Cybercriminals used social engineering to impersonate employees to gain access to systems.
- NCSC suggests reviewing helpdesk processes for stronger identity verification during password resets.
- Recommendations include deploying multi-factor authentication and monitoring for unauthorized account use.
- Organizations are urged to prepare for future attacks as a proactive measure.