Reputable UK retailers have been targeted by hackers using social engineering tactics, including impersonating IT help desks, to gain access to employees’ accounts. The National Cyber Security Centre has issued guidance to organisations to review their IT help desk password reset processes to reduce their chances of getting hacked.
Hackers have targeted several major British retailers, including Marks & Spencer, Co-op, and Harrods, in the last two weeks. The attackers have used social engineering tactics to gain access to employees’ accounts, often by impersonating ‘IT help desks’.
The National Cyber Security Centre (NCSC) has issued guidance to organisations to review their IT help desk ‘password reset processes’ to reduce their chances of getting hacked. This includes reassessing how staff members are authenticated before resetting passwords, especially senior employees with access to high-level parts of an IT network.
Criminals use social engineering techniques to trick employees into handing over their log in passwords and security codes. They may also call people who work on the help desk and pretend to be an employee locked out of their account. To combat these types of attacks, cyber security experts recommend further layers of security, such as code words that get used when an employee phones up to change their credentials.
Social engineering is a type of attack where an attacker manipulates individuals into divulging confidential information or performing certain actions.
This can be done through various means, such as phone calls, emails, or in-person interactions.
According to the US Department of Defense, social engineering attacks account for 90% of all security breaches.
Attackers often use psychological manipulation to build trust and create a false sense of urgency, making it difficult for victims to resist their requests.
The Rise of Scattered Spider
The NCSC advice suggests that the hackers are using tactics most commonly associated with a collective of English-speaking cyber criminals nicknamed ‘Scattered Spider’ . This group has been responsible for high-profile attacks in the past, including coordinated moves against casinos and breaches of dozens of companies.
Scattered Spider hacks have resulted in six arrests in the last year of hackers accused of being from this group in the US and UK. The group’s tactics include using social engineering to gain access to employees’ accounts, often by impersonating ‘IT help desks’ .
Protecting Yourself
Cyber defenders are being urged to watch out for ‘Risky Logins’ . This means looking out for when and where employees have logged in from – for example late at night or from strange locations. To protect yourself, it’s essential to have multiple ways of doing login credentials to ensure it isn’t easy to bypass.
The Importance of Cyber Security
The recent attacks on Marks & Spencer, Co-op, and Harrods highlight the importance of cyber security in protecting businesses against these types of threats. By following best practice and taking steps to secure your IT help desk ‘password reset processes’ , you can minimise the chances of falling victim to hackers like Scattered Spider .
Cyber security threats come in various forms, including malware, viruses, and phishing attacks.
Malware is software designed to harm or exploit a system, while viruses are self-replicating code that can cause damage.
Phishing attacks involve tricking users into revealing sensitive information through fake emails or websites.
According to the FBI, cybercrime costs businesses over $3 billion annually in the US alone.
