The UK’s National Crime Agency (NCA) has arrested four individuals suspected of involvement in the cyber attacks targeting Marks and Spencer (M&S), Co-op, and Harrods.

According to a statement, the suspects include two 19-year-old men, a 17-year-old boy, and a 20-year-old woman. They were arrested in the West Midlands and London on suspicion of violating the Computer Misuse Act, as well as charges related to blackmail, money laundering, and organized crime participation.

The NCA reported that the suspects are currently being held for questioning by the National Cyber Crime Unit.

The operation has led to the seizure of electronic devices belonging to the suspects, which are now awaiting digital forensic examination, the agency stated.

Deputy director Paul Foster, head of the NCA’s National Cyber Crime Unit, described the arrests as a “significant step” in the investigation into the attacks that impacted UK retailers earlier this year.

He noted that since the attacks occurred, specialized NCA cyber crime investigators have been working intensively, and the case remains one of the agency’s top priorities.

"Cyber attacks can cause major disruptions for businesses. I want to express my gratitude to M&S, Co-op, and Harrods for their cooperation during our investigations," Foster said.

He added, “I hope these arrests demonstrate to future victims the importance of reaching out for support and engaging with law enforcement when reporting such incidents. The NCA and police services are ready to assist."

UK retailers shaken by disruptive attacks

The alleged cyber offenses occurred in April 2025, when all three retailers were attacked. However, the impact on each business and its customers varied significantly.

M&S was the first to report an incident, and its recovery process has been especially prolonged. Immediately following the attack, the company had to suspend online orders and click and collect services nationwide.

M&S resumed taking orders in early June, nearly six weeks after the cyber incident. The financial cost of the recovery is projected to reach hundreds of millions for the company.

Following the attack on M&S, Co-op also experienced disruptions, which left shelves empty for customers across the UK. Residents in certain areas of the Scottish Highlands and Islands were especially affected, as Co-op stores often served as the only local food retailers.

In contrast, Harrods—the third alleged target—faced only minimal and temporary disruption.

Make sure to follow php.cn on Google News to keep tabs on all our latest news, analysis, and reviews.

The above is the detailed content of Arrests made in hunt for hackers behind cyber attacks on M&S and Co-op. For more information, please follow other related articles on the PHP Chinese website!