M&S and Co-Op: BBC reporter on talking to the hackers

Receiving a message from hackers is not an uncommon occurrence in the life of a cyber security correspondent like myself. These individuals, with varied intentions ranging from good to bad- and everything in between, often reach out to share details of their hacks, findings, and exploits. Despite the regularity of such interactions, most conversations with hackers never progress beyond the confines of my chat logs. However, a recent message demanded immediate attention.

The exchange began with a message on Telegram from unidentified individuals claiming involvement in the M&S and Co-op cyber attacks, sending shockwaves of mass disruption. Over the course of five intense hours of conversation, it became evident that these hackers, fluent in English, were not merely messengers but likely key figures in the cyber assaults. Providing concrete evidence of their theft of vast amounts of sensitive customer and employee data, they sought to make an impact.

Amidst growing frustration over Co-op’s refusal to comply with their ransom demands, the hackers communicated with me but refrained from disclosing the exact sum they were seeking in Bitcoin for the stolen data’s safekeeping. After consulting with the BBC’s Editorial Policy team, we decided to divulge the evidence provided to us, prompting the Co-op to acknowledge the significant data breach. Following this revelation, a barrage of confrontational correspondence and offensive messages arrived, shedding further light on the company’s response to the extortion drama. This contentious dialogue ultimately confirmed suspicions that the culprits belonged to a cyber crime service named DragonForce.

Delving into the world of DragonForce, an elusive entity offering unlawful services to cyber criminals, revealed a network promoting a ransomware-as-a-service model. With notorious groups like LockBit fading into obscurity due to law enforcement crackdowns, a power struggle within the underworld ensued, leading to strategic shifts and innovative service offerings. As DragonForce evolved into a sophisticated cartel, providing expanded services and customer support, it sparked intrigue among experts and researchers delving into the intricate dynamics of cyber crime and extortion

Read the full article from The BBC here: Read More