M&S Cyber Attack Linked to Gang of Teenage Hackers

By /

Listen to this Post

Featured Image
The recent cyber attack on Marks & Spencer (M&S) has been linked to the notorious criminal group Scattered Spider, believed to consist of teenage hackers. Investigators suspect their involvement in the breach, highlighting the growing threat posed by young, tech-savvy cybercriminals.

Read more here

You Should Know: How to Protect Against Cyber Attacks Like Scattered Spider

1. Strengthen Network Security

Ensure firewalls, intrusion detection systems (IDS), and endpoint protection are up to date.

Linux Command to Check Open Ports:

sudo netstat -tuln

Windows Command to Verify Firewall Rules:

Get-NetFirewallRule | Select-Object Name, Enabled

2. Implement Multi-Factor Authentication (MFA)

Prevent unauthorized access by enforcing MFA across all critical systems.

Linux (Using Google Authenticator):

sudo apt install libpam-google-authenticator 
google-authenticator

Windows (Enable MFA via Azure AD):

Set-MsolUser -UserPrincipalName [email protected] -StrongAuthenticationRequirements @{}

3. Monitor for Suspicious Activity

Use SIEM tools like Splunk or ELK Stack to detect anomalies.

Linux (Check Auth Logs for Failed Logins):

sudo grep "Failed password" /var/log/auth.log

Windows (Check Event Logs for Brute Force Attempts):

Get-WinEvent -FilterHashtable @{LogName='Security'; ID=4625}

4. Patch Management

Keep systems updated to prevent exploitation of known vulnerabilities.

Linux (Update All Packages):

sudo apt update && sudo apt upgrade -y

Windows (Check for Missing Patches):

Get-HotFix | Sort-Object InstalledOn -Descending

5. Employee Awareness Training

Phishing remains a key attack vector—train staff to recognize malicious emails.

Simulate a Phishing Test (Linux):

 Use tools like GoPhish 
git clone https://github.com/gophish/gophish.git 
cd gophish 
go build

What Undercode Say

The M&S cyber attack underscores the evolving threat landscape, where even teenage hackers can cause significant damage. Organizations must adopt a zero-trust approach, enforce strict access controls, and continuously monitor networks.

Additional Security Commands:

  • Linux (Check Active Connections): 
    ss -tuln

  • Windows (Scan for Malware with Defender): 

    Start-MpScan -ScanType FullScan

  • Linux (Block Suspicious IPs): 

    sudo iptables -A INPUT -s 192.168.1.100 -j DROP

  • Windows (Disable Dangerous Services): 

    Stop-Service -Name "RemoteRegistry" -Force

Expected Output: A hardened system with real-time monitoring, MFA enforcement, and regular security audits to mitigate risks from groups like Scattered Spider.

Read the full article here

References:

Reported By: Danlohrmann Ms – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

💬 Whatsapp | 💬 Telegram

Related Posts: