Scattered Spider Hacks M&S, Co-op in $592M Cyber Hit

U.K. retailers Marks & Spencer and Co-op suffered coordinated cyberattacks in April 2025, resulting in damages estimated up to $592 million. The Cyber Monitoring Centre (CMC), an independent body backed by the insurance industry, confirmed that the incidents are now classified as a “single combined cyber event.” Investigators linked the breaches to the Scattered Spider hacks on M&S and Co-op, which were claimed by the same threat actor.

The CMC’s assessment underscores the growing threat of sophisticated, multi-target cyber operations. According to the organization, the shared tactics and timing between the attacks point to a concerted campaign rather than isolated incidents. The Scattered Spider hacks on M&S and Co-op reflect a broader trend of increasingly organized cybercriminal groups impacting major U.K. businesses.

The full extent of the operational and financial fallout remains under review by insurers and regulators. For more details, read the full report published by The Hacker News:

https://thehackernews.com/2025/06/scattered-spider-behind-cyberattacks-on.html