Internet correspondent, BBC World Service
Bloomberg via Getti ImsThe British Broadcasting Corporation has witnessed an offensive email sent by Marx & Spencer to the infiltrators to the head of the retail seller who flows around the penetration and the demanding payment.
A message was sent to the CEO of M & S Stuart Machin – which was in the broken English language – on April 23 of the Hacker group called Dragonforce using the employee’s email account.
Email for the first time confirms that the M&S was hacked by the Ransomware Group – something that has been rejected so far.
“We went to China’s ways to the United Kingdom, we raped your company without mercy and explained all the servers,” the infiltrators wrote.
“The dragon wants to talk to you, so please go to [our darknet website]”
The BBC email was displayed by cybersecurity expert.
The extortion message, which includes a racist term, was sent to the CEO of M & S and seven other executives.
In addition to boasting about installing the Ransomware program via the M&S IT system to make it useless, infiltrators say they stole special data for millions of customers.
After nearly three weeks Customers have been informed By the company that their data may be stolen.
Email was apparently sent using an employee account from the Tata Consultance Services giant in IT (TCS) – which provided IT services to M&S for more than a decade.
London -based Indian IT worker is M & S, but it is a paid TCS employee.
It looks as if it was penetrated in the attack.
TCS already said It is investigating Whether it is the electronic attack portal.
The BBC told the BBC that the email was not sent from its system and that it has nothing to do with the breeding of M & S.
M & S refused completely.
“We can help each other”
The joint Darknet link in email is blackmailing the gate of Dragonforce victims to start negotiating ransom fees. This is an additional indication that the email is authentic.
Share link – Books of the infiltrators: “Let’s start the party. We sent a message to us, we will make this fast and easy for us.”
Criminals seem to have details about the company’s electronic insurance policy, saying, “We know that we can help each other wonderfully :).”
CEO of M & S Refuse If the company pays a ransom to infiltrators.
Dragonforce ended the email with a picture of dragon fire.
Email for the first time confirms the link between the M & S penetration An ongoing collaborative electronic attack,, Which Dragonforce also claimed responsibility.
The penetration – which started in late April – may cause ruin on retailers. She left some of the cooperative shelves naked for weeks, while she expects the M&S to be disrupted until July.
Although we now know that Dragonforce is behind both, it is still unclear than the actual infiltrators.
Dragonforce provides subsidiaries of electronic ferries on different services on their Darknet site in exchange for cutting 20 % of any ransom collected.
Anyone can subscribe and use their harmful programs to scramble the victim’s data or use their Darknet site for their general blackmail.
Nothing appeared on Darknet Darknet for a crime about either cooperative or M & S, but the infiltrators told BBC last week that they were issuing it on their own and they would publish information “very soon”.
Some researchers say that Dragonfore is based in Malaysia, while others say Russia. Their email to M & S means that they are from China.
Speculation has been escalated that a group of young Western infiltrators known as the scattered spider may be the subsidiaries behind the breakthroughs as well as one on Harrods.
The scattered spider is not really a set in the natural sense of the word. It is more than a society organized through sites like Discord and Telegram and Forum-thus describing the “scattered” that researchers gave them cyber security in Crowdstrike.
It is known that some of the scattered spider infiltrators are teenagers in the United States and the United Kingdom.
The National Crime Agency in the United Kingdom said in BBC documentary On retail breakthroughs, they focus on the group’s investigations.
BBC Talk to cooperative infiltrators Those who refused to answer the widespread spider or not. “We will not answer this question,” is all they said.
Two of them said they wanted to be known as “Raymond Redington” and “Deep Zuma” after characters from the American Crime movie, the black list that involves a wanted criminal who helps the police to download other criminals in a black list.
In a message, she boasted: “We are putting retailers in the UK on the blacklist.”
There has been a series of smaller electronic attacks on retailers in the UK since then, but there has been no effect on sabotage such as those on cooperative, M&S and Harrods.
In the early stages of the M&S penetration, unknown sources told Cyber News Bleeping that the evidence indicates the scattered spider.
The National Crime Unit in the United Kingdom He assured the BBC that the group is one of the main suspects.
As for the infiltrators who spoke to them on Telegram, they refused to answer whether they were a scattered spider. “We will not answer this question,” is all they said.
