Four Hackers Arrested by UK Police After Attacks on M&S Co‑op and Harrods

UK law enforcement authorities have made significant progress in their investigation into cyber attacks targeting some of Britain’s most prominent retailers, with four individuals now in custody following coordinated arrests across the West Midlands and London.

The National Crime Agency (NCA) announced today that four suspects—two males aged 19, a 17-year-old male, and a 20-year-old female—were apprehended this morning on suspicion of multiple serious offences.

The charges include Computer Misuse Act violations, blackmail, money laundering, and participation in organized criminal activities.

All arrests were conducted at the suspects’ home addresses, with electronic devices seized for comprehensive digital forensic examination.

The arrests relate to cyber attacks that targeted three major British retailers: Marks & Spencer (M&S), Co-op, and luxury department store Harrods.

These coordinated attacks occurred in April 2025, causing significant disruption to the affected businesses and potentially compromising sensitive customer and corporate data.

Deputy Director Paul Foster, who heads the NCA’s National Cyber Crime Unit, emphasized the gravity of the investigation and the agency’s commitment to pursuing cybercriminals.

“Since these attacks took place, specialist NCA cybercrime investigators have been working at pace and the investigation remains one of the Agency’s highest priorities,” Foster stated.

The operation represents a collaborative effort between multiple law enforcement agencies.

Officers from the West Midlands Regional Organised Crime Unit and the East Midlands Special Operations Unit provided crucial support for today’s operational activities, demonstrating the coordinated approach required to combat sophisticated cybercrime.

Foster highlighted the broader implications of the case, noting that “today’s arrests are a significant step in that investigation but our work continues, alongside partners in the UK and overseas, to ensure those responsible are identified and brought to justice.”

This statement suggests that the investigation may extend beyond the four individuals currently in custody, potentially involving international cooperation to address a wider criminal network.

The NCA official also acknowledged the cooperation of the affected retailers, expressing gratitude to M&S, Co-op, and Harrods for their support throughout the investigation process.

Foster emphasized the importance of victim engagement with law enforcement, stating that the case “hopefully signals to future victims the importance of seeking support and engaging with law enforcement as part of the reporting process.”

The arrests underscore the growing threat posed by cybercriminal organizations and the sophisticated nature of modern cyber attacks targeting retail infrastructure.

As businesses increasingly rely on digital systems for operations and customer service, the potential for disruption from such attacks continues to escalate.

The four suspects remain in custody for questioning by NCA officers, while the investigation continues.

Authorities remind potential cybercrime victims to utilize the Government’s Cyber Incident Signposting Site for guidance on reporting incidents to appropriate agencies.

Stay Updated on Daily Cybersecurity News . Follow us on Google News, LinkedIn, and X.