Major Cyberattacks Target UK Retailers and Coinbase Insider Threats
Major Cyberattacks Target UK Retailers and Coinbase Insider Threats
On May 2, 2025, the cybersecurity landscape was rocked by significant incidents affecting multiple sectors. A cyberattack on Marks & Spencer, a leading UK retailer, caused major operational disruptions and resulted in the theft of customer data. This attack is attributed to the hacking group Scattered Spider, known for employing social engineering techniques to infiltrate organizations, with similar attacks reported on Harrods and Co-Op UK.
In a parallel incident, Coinbase, a prominent cryptocurrency exchange, disclosed an insider attack where bribed employees were used to gain unauthorized access to sensitive user data. Although the company rejected the ransom demand, it is now offering rewards for information leading to the attackers' arrests. These incidents underscore the evolving threat landscape and the critical need for robust cybersecurity measures.
Also In Security Today
- Cobb County Ransomware Incident: The Qilin ransomware group attacked Cobb County, Georgia, claiming to have stolen sensitive personal data. The county has opted not to pay the ransom, emphasizing the ongoing cybersecurity challenges faced by local governments.
- CISA Vulnerabilities Advisory: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an advisory highlighting multiple critical vulnerabilities in widely used software systems that are currently being exploited. Organizations are urged to apply available patches immediately to mitigate risks.
- New CVE Releases: Numerous new CVEs were released today, including several with high CVSS scores, emphasizing the importance of regular software updates and patch management. Security professionals should prioritize these vulnerabilities in their remediation strategies.