Lessons from the retail ransomware surge

Speakers:

• Patrick Wragg, Head of Incident Response
• Richard Ford, CTO

This spring a wave of ransomware attacks shook the UK retail sector, hitting high-profile names including Marks & Spencer, Co-op and Harrods. These incidents, attributed to the Scattered Spider threat group, revealed just how effective social engineering has become—and how unprepared many organisations remain. Once again this attack highlights that complex zero-days aren't the attack vector we should be most concerned about.

Join Integrity360’s CTO Richard Ford and Head of Incident Response Patrick Wragg as they dissect the tactics of Scattered Spider, explore how threat actors use impersonation, SIM swapping, and “living off the land” techniques, and highlight how and why they succeed.

This webinar will go beyond the headlines to provide practical, actionable advice for strengthening defences, from help-desk authentication and phishing-resistant MFA to incident response readiness and cultural resilience.

Key takeaways:
How attackers bypass controls using human error and legitimate tools
What retailers and other sectors can do to harden help-desk and credential reset procedures
Why MFA alone may not enough—and what stronger authentication really looks like
The role of Privileged Access Management (PAM) in preventing elevated access
How tested incident response plans and immutable backups can save your business
Why security culture is as important as your technology stack

Who should attend:
This session is designed for CISOs, IT security leaders, retail risk managers, and anyone responsible for cyber resilience in customer-facing or high-value data environments. Whether you're in retail, logistics, healthcare or finance, the lessons from these attacks apply far beyond the high street.