Washington: Alphabet’s cybersecurity division has issued a stark warning: the hackers responsible for crippling several major British retailers have shifted their focus to similar targets in the United States.
According to Google, the group behind these sophisticated cyberattacks is linked to the “Scattered Spider” network—a loosely organized but highly effective collective of hackers known for executing large-scale digital intrusions. The warning comes after the group’s recent paralyzing attack on M&S, one of the United Kingdom’s most recognized retail brands, which saw its online operations brought to a standstill on April 25.
“US retailers should take note. These actors are aggressive, creative, and particularly effective at circumventing mature security programs,” said John Hultquist, a leading analyst at Google’s cybersecurity unit.
Hultquist noted that this group often concentrates its efforts on one industry at a time, and the retail sector appears to be its current priority. The implication is clear: American retailers must prepare for an extended wave of cyber offensives.
The Scattered Spider-linked ecosystem has already built a notorious reputation on both sides of the Atlantic. In 2023, the group made global headlines after infiltrating major U.S. casino operators MGM Resorts International and Caesars Entertainment, causing widespread operational disruptions and financial fallout.
One of the major challenges for law enforcement has been the group’s elusive structure. Scattered Spider is described as a decentralized network composed of hackers of varying skill levels, many of them believed to be relatively young. This, combined with inconsistent cooperation from affected businesses, has hindered effective countermeasures.
Also Read | Netanyahu Silent as Trump Engages Rivals and Allies Alike
The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) did not respond to requests for comment regarding the emerging threat.
Christian Beckner, Vice President at the National Retail Federation, confirmed that the U.S. retail sector has been closely monitoring the situation. “We’ve been closely tracking everything going on in the UK over the past few weeks,” he said. “There aren’t geographic boundaries on these threats.”
Also Read | Toddler Reunited with Mother in Caracas as Maduro Acknowledges Trump’s Role
Meanwhile, the Retail & Hospitality Information Sharing and Analysis Center (ISAC)—whose membership includes major names such as Albertsons, Costco, McDonald’s, and Lowe’s—has partnered with Google to deliver a threat intelligence briefing to prepare its members for potential attacks.
As the cyber threat landscape evolves, Google’s alert underscores the increasing need for retailers across the U.S. to bolster their digital defenses before they become the next headline.
