Arrests over retail ransomware attacks
Event Details
The UK’s National Crime Agency arrested four suspects (ages 17–20) in coordinated raids in England as part of an investigation into April 2025 cyberattacks on retailers Marks & Spencer, Co-op, and Harrods. M&S had suffered a major ransomware attack, forcing a 46-day shutdown of online sales and an estimated £300 million profit hit. The suspects are accused of Computer Misuse Act offenses, blackmail, and money laundering. This action targeted a hacking collective (known as “Scattered Spider/DragonForce”) believed to be behind the attacks.
Date
10/07/2025
Ransomware Group
- DragonForce (ransomware used in M&S attack)
Event Category
- Arrest
Level of Cooperation
- National
Countries
🇬🇧 United Kingdom, 🇺🇸 United States
