Key Facts

• UK's National Cyber Security Centre (NCSC) has issued a warning about fraudulent IT help desk calls following cyber attacks on Marks & Spencer, Co-op, and Harrods.
• The cyber attackers are impersonating IT help desk calls to gain unauthorized access to organizations' networks.
• The NCSC has advised businesses to review their IT help desk password reset processes and ensure proper identification before resetting passwords.
• The term "social engineering" refers to methods used by cyber criminals to gain trust and trick people into revealing sensitive information like passwords and security codes.
• Hackers are suspected to be part of a group known as Scattered Spider, which includes English-speaking cybercriminals.
• Scattered Spider is not a well-organized group, but its members have conducted planned attacks on various companies and stolen or scrambled data to extort victims.
• Cyber defenders are also advised to monitor "Risky Logins", that is, unusual login patterns such as odd hours or locations.
• Scattered Spider hackers have previously attacked casinos in Las Vegas, and six of them were arrested in the US and UK.
• In recent developments, the cybercriminals responsible for the current attacks have communicated directly with the BBC, but their identity remains anonymous.