- Course
- Security
Security Hot Takes: Inside the M&S Ransomware Attack
=Uncover how Scattered Spider breached systems, disrupted operations, and triggered major financial fallout—and learn what your organization can do to prevent a similar crisis.
What you'll learn
In this episode of Security Hot Takes, we analyze the ransomware attack that brought UK retail giant Marks & Spencer to a standstill. From identity compromise and lateral movement to encrypted infrastructure and massive operational disruption, this real-world breach offers a masterclass in how modern adversaries operate. You'll learn about the Scattered Spider threat group, the vulnerabilities they exploited, and the critical missteps that prolonged recovery. More importantly, you'll explore how zero-trust identity practices, rigorous incident response planning, and hands-on recovery readiness can help your organization avoid the same fate. Fast, focused, and actionable—this is threat intelligence that sticks.
Table of contents
About the authors
Matt has a degree in Chemical engineering and a PhD in mathematical chemistry. He is also a GIAC certified incident handler and penetration tester and has regulated cyber security in the UK civil nuclear sector for many years.
Michael Teske is an Author Evangelist with Pluralsight helping people elevate their skills. He has 20+ years of experience in IT Ops, including 17 as an IT instructor at a community college.