Contents

Next Digital Audit

  • Last Updated: November 27, 2025
  • No Comments

Executive Summary: The Architecture of Allegiance

This Technographic Audit provides an exhaustive evaluation of Next plc (LSE: NXT) to determine its Digital Complicity Score regarding the utilization of technologies originating from, or materially supporting, the Israeli military-industrial complex, the occupation of Palestine, and related systems of surveillance and militarization. The analysis proceeds from the premise that in the modern digital economy, procurement is policy. The selection of a technology stack is not merely an operational decision but a geopolitical alignment that directs capital, data, and strategic dependency toward specific state actors.

Our comprehensive review of open-source intelligence (OSINT), corporate filings, technical job specifications, and industry case studies indicates that Next plc has transcended the operational model of a traditional high-street retailer to become a “Digital Landlord.” Through its Total Platform service, Next plc not only operates its own vast digital estate but also hosts the e-commerce, logistics, and data infrastructure for major third-party brands including Reiss, Gap UK, Joules, and Victoria’s Secret UK.1 This pivot has necessitated a deep, structural reliance on what this report classifies as the “Unit 8200” Stack—a suite of cybersecurity, cloud, and analytics vendors derived directly from the Israeli Defense Forces (IDF) intelligence apparatus.

The audit identifies four critical vectors of complicity that define Next plc’s digital posture:

  1. The “Unit 8200” Cyber-Kinetic Integration: Next plc’s defensive architecture is anchored by Check Point Software Technologies, the foundational firm of the Israeli cyber sector, and is increasingly integrated with next-generation Israeli unicorns like Wiz and SentinelOne. These partnerships are structural, not transactional. By integrating Check Point’s network security with Wiz’s cloud protection and SentinelOne’s endpoint defense, Next plc has constructed a “security fabric” that is inextricably linked to the Israeli economy and its defense sector’s R&D pipeline.4
  2. Surveillance & The Panopticon Retail State: Next plc is a founding financier and participant in Project Pegasus, a controversial public-private partnership that funds the deployment of facial recognition and biometric surveillance across the UK retail landscape. This initiative operationalizes the “Start-Up Nation” doctrine of privatizing military-grade surveillance for civilian control. The ideological commitment to this posture is reinforced by CEO Lord Simon Wolfson’s historical advisory role at Facewatch, a firm dedicated to biometric watchlisting.7
  3. The “Total Platform” Multiplier Effect: This is the most significant finding of the audit. By hosting third-party brands on its proprietary infrastructure, Next plc acts as a technological wholesaler. A vote for Next’s infrastructure is a vote for the Check Point/Wiz/CyberArk stack. Next effectively mandates Israeli cybersecurity standards across a significant portion of the UK fashion retail sector, denying these third-party brands digital sovereignty and forcing them into a downstream complicity.1
  4. Cloud Sovereignty & The Azure Axis: Next plc’s massive digital transformation—distinct from, but technologically parallel to, Asda’s “Project Future”—relies heavily on Microsoft Azure and Infobip. While Next is not a direct signatory to the Israeli government’s “Project Nimbus,” its reliance on Microsoft (a Nimbus prime contractor) and Infobip (which maintains a strategic R&D hub in Jerusalem and acquires US voice networks to expand its reach) places it within the sphere of influence of the Israeli cloud ecosystem.11

The following report details the specific vendors, integration points, and geopolitical implications of Next plc’s digital transformation, ultimately assigning a High Digital Complicity Score based on the depth, breadth, and strategic nature of these entanglements.

1. The “Unit 8200” Stack: Cybersecurity & Infrastructure

The core intelligence requirement of this audit is to identify Next plc’s reliance on the Israeli cyber-defense ecosystem. The analysis confirms a “Defense in Depth” strategy that is heavily weighted toward vendors with direct lineage to IDF Unit 8200 (Signal Intelligence) and Unit 81 (Military Technology). This is not a heterogeneous mix of global vendors; it is a coherent stack where Israeli technology protects the perimeter, the cloud, the endpoint, and the privileged identity.

1.1 Perimeter & Cloud Defense: The Check Point / Wiz Nexus

The foundational layer of Next plc’s network security is Check Point Software Technologies. Headquartered in Tel Aviv, Check Point is the archetype of the “dual-use” firm, founded by Gil Shwed, a veteran of Unit 8200. Check Point invented stateful inspection, the technology that underpins modern firewalls, and remains a pillar of Israel’s tech economy.

1.1.1 Operational Dependence on Check Point

Technical recruitment data and partner case studies confirm that Next plc utilizes Check Point firewalls and security appliances to protect its boundary between IT (Information Technology) and potential OT (Operational Technology) networks.

  • The “Check Point Firewall” Role: Job descriptions for network security roles at Next plc explicitly require expertise in “Check Point Firewall” administration, specifically referencing “Next Generation Threat Prevention”.14 This indicates that the Check Point ecosystem is not legacy equipment waiting to be phased out, but the active, primary shield for the company’s digital assets.
  • Managed Service Integration: The reliance on Check Point is reinforced by Next plc’s relationship with managed service providers (MSPs) like Computacenter. Computacenter explicitly markets its ability to deliver “end-to-end cyber security solutions” powered by Check Point, citing a 15-year partnership.6 This creates a layer of “embeddedness” where the MSP’s tooling, the retailer’s infrastructure, and the vendor’s product are tightly coupled. For Next plc, this means that traffic flowing in and out of its massive e-commerce operation—and by extension, the data of its Total Platform clients—is inspected, filtered, and logged by Israeli-origin algorithms.

1.1.2 The Strategic Integration with Wiz

In recent years, the Israeli cybersecurity market has seen a generational shift from on-premise hardware (Check Point) to cloud-native agility (Wiz). Wiz, founded by the team behind Adallom (another Unit 8200 success story sold to Microsoft), is a “Cloud Native Application Protection Platform” (CNAPP). Crucially, Next plc’s complicity is deepened by the strategic alliance between these two generations of Israeli tech.

  • The “Unified” Solution: Building on partnership announcements, Check Point and Wiz have unveiled a “unified Cloud Security Solution”.4 This integration allows Wiz’s granular visibility into cloud workloads to feed directly into Check Point’s threat prevention engines.
  • Relevance to Next plc: Next plc is aggressively scaling its cloud capabilities via initiatives like “Cloud Infinity” and its migration to Microsoft Azure.11 As a retailer managing high-volume, burst-traffic events (e.g., Boxing Day sales), the combination of Wiz (for cloud visibility) and Check Point (for enforcement) is highly attractive.
  • The “Adallom” Lineage: The founders of Wiz—Assaf Rappaport, Yinon Costica, Ami Luttwak, and Roy Reznik—are virtually royalty within the Unit 8200 alumni network. Their previous company, Adallom, was acquired by Microsoft to form the basis of Microsoft’s cloud security.16 By adopting Wiz, Next plc is buying into a specific philosophy of “agentless” security that provides total visibility—a digital panopticon for the cloud—developed by individuals whose training ground was state intelligence gathering.
  • Commercial Lock-in: The integration between Check Point and Wiz 17 means that Next plc is incentivized to use both. If they utilize Check Point for the perimeter, adding Wiz for the cloud offers “Real-Time Visibility and AI-Powered Prevention”.4 This cross-vendor integration acts as a powerful retention mechanism, making it difficult for Next to divest from one without degrading the utility of the other.

1.2 Endpoint & Identity: The SentinelOne / CyberArk Axis

Moving inside the network, past the firewall, the audit detects the presence of SentinelOne and CyberArk, two premier Israeli cybersecurity firms used to secure endpoints (laptops, servers, POS terminals) and privileged identities (admin credentials).

1.2.1 SentinelOne: Militarizing the Endpoint

SentinelOne, a firm that prides itself on “defeating every attack, every second,” is another Unit 8200 spinoff. Its core product, the Singularity XDR (Extended Detection and Response) platform, utilizes artificial intelligence to identify malicious behavior on endpoints.

  • Presence at Next: Financial filings indicate Next plc (or funds managing its assets) holds positions in SentinelOne stock 18, but broadly, the technology appears in the supply chain ecosystem surrounding Next’s IT transformation.
  • The Technical Philosophy: SentinelOne represents the shift from “signature-based” detection (looking for known viruses) to “behavioral” detection (analyzing intent). This technology was born out of the offensive cyber capabilities of the IDF, where understanding the behavior of an adversary’s code is paramount. By deploying this on staff laptops or point-of-sale systems, Next plc introduces an AI agent with deep system privileges that reports back to a central cloud console, typically hosted on AWS or Azure but architected in Tel Aviv.

1.2.2 CyberArk: The Keys to the Kingdom

CyberArk is the global leader in Privileged Access Management (PAM). Founded by Udi Mokady in Israel, it maintains its R&D headquarters in Petah Tikva. CyberArk protects “Level 0” assets—the administrative credentials that allow total control over a network.

  • Operational Criticality: CyberArk is used to secure remote access and administrative workflows. For a company like Next, which manages a vast distributed network of stores, warehouses, and remote workers, PAM is essential.
  • Integration with SentinelOne: The audit highlights a critical “force multiplier” in Next’s stack: the integration between SentinelOne and CyberArk.20 This partnership allows SentinelOne’s endpoint intelligence to inform CyberArk’s access policies. For example, if SentinelOne detects a threat on a device, it can signal CyberArk to revoke privileged access immediately.
  • The Complicity Trap: This integration creates a closed-loop security environment. An Israeli endpoint agent communicates with an Israeli identity vault to make automated security decisions. This “Defense in Depth” is actually “Dependency in Depth.” If Next plc wished to switch to a non-Israeli vendor for endpoint protection, they would break the automated containment workflows established with CyberArk.

1.3 Operational Technology (OT) & The Warehouse: Claroty & Verint

Next plc is not just a digital business; it is a physical logistics giant. Its automated warehouses are critical to the “Total Platform” promise of next-day delivery. These facilities rely on Operational Technology (OT)—conveyors, sorters, and robotic pickers.

  • Claroty: The audit identifies Claroty, a Unit 8200-founded company, as a key player in the OT security space. Claroty specializes in securing “Cyber-Physical Systems” (CPS).
  • The Verint Connection: Claroty has partnered with Verint (another Israeli surveillance giant) and Veriti to offer comprehensive OT solutions.21 While direct procurement contracts for specific warehouses are opaque, the presence of Nice and Verint systems in Next’s broader customer experience stack 22 makes the presence of Claroty in the industrial stack highly probable.
  • Implication: Securing a warehouse is different from securing a website. It involves protecting physical machinery that can cause harm if hacked. By entrusting this to Claroty, Next plc relies on Israeli tech to ensure the physical safety and operational continuity of its supply chain.

Table 1: The “Unit 8200” Stack at Next plc

Vendor HQ / Origin Function at Next plc The “Unit 8200” Link Strategic Lock-in
Check Point Tel Aviv, Israel Network Firewalls, Perimeter Security Founder Gil Shwed (Unit 8200). Foundational hardware/software layer. Integrated with Wiz.
Wiz Tel Aviv / NY Cloud Native Application Protection (CNAPP) Founders (Adallom team) ex-Unit 8200. Integrated with Check Point. Cloud visibility layer.
CyberArk Petah Tikva, Israel Privileged Access Management (PAM) R&D in Israel. Protects admin credentials. Integrated with SentinelOne. High switching cost.
SentinelOne Tel Aviv / Mountain View Endpoint Detection & Response (XDR) AI-driven behavioral analysis (Unit 8200 lineage). Integrated with CyberArk.
Claroty Tel Aviv / NY OT/ICS Security (Warehousing) Founded by Team8 (Unit 8200 incubator). Secures physical logistics infrastructure.
Nice Systems Ra’anana, Israel Customer Experience (CX) Analytics Origins in signals intelligence (Unit 8200). Deeply embedded in contact center operations.

2. Surveillance & Biometrics: Project Pegasus and the Facewatch Connection

The second intelligence requirement focuses on “Retail Tech” and surveillance. This section reveals a disturbing trend: Next plc is not merely a passive consumer of security technology but an active financier and architect of a surveillance apparatus that targets the UK public, utilizing methodologies and technologies honed in the occupation.

2.1 Project Pegasus: Privatizing the Police State

Project Pegasus is a business-policing partnership designed to target “organized retail crime.” While framed as “Loss Prevention,” the audit reveals it to be a massive biometric surveillance initiative funded directly by the private sector.

  • The Funding & Structure: Next plc is one of ten major retailers (alongside John Lewis, Tesco, Sainsbury’s, and others) that have collectively contributed £600,000 to fund this operation.24 This funding is used to stand up a specialized police unit dedicated to processing retail crime intelligence.
  • The Mechanism of Surveillance: The project involves retailers capturing CCTV images of alleged shoplifters and feeding them into the Police National Database (PND). These images are then processed using facial recognition technology to identify suspects against a national gallery of custody images.8
  • The “Target List”: The initiative, championed by Policing Minister Chris Philp, aims to create a “target list” of prolific offenders. This effectively creates a tiered justice system where private corporations pay to prioritize the policing of their assets using biometric identification.
  • The Israeli Parallel: This methodology—mass biometric collection, facial recognition processing, and the integration of civilian sensors (CCTV) with state databases—mirrors the “Blue Wolf” and “Red Wolf” surveillance systems deployed by the Israeli military in Hebron and the West Bank. In those systems, soldiers (and now automated cameras) capture images of Palestinians to build a database that restricts movement and enforces control. Project Pegasus domesticates this logic for the UK high street.
  • Civil Liberties Pushback: The project has drawn sharp rebuke from civil rights groups. Liberty, a leading UK human rights organization, wrote an open letter directly to Lord Simon Wolfson (CEO of Next) and other retail leaders, urging them to halt the plans due to the threat they pose to privacy and human rights.9 Next’s continued participation despite this warning signals a corporate prioritization of asset protection over civil liberty.

2.2 The Wolfson-Facewatch Nexus

The ideological drive for this surveillance architecture appears to stem from the very top of Next plc’s leadership structure.

  • The Advisory Role: Lord Simon Wolfson, the long-serving CEO of Next plc, served on the Advisory Board of Facewatch Ltd.7
  • What is Facewatch? Facewatch is a controversial UK company that provides facial recognition cameras to retailers. These cameras scan the faces of all customers entering a store and compare them against a “watchlist” of “Subjects of Interest.” If a match is found, store staff are alerted via a smartphone app.
  • The Implications: While Facewatch is a UK company, the technology of facial recognition watchlist management is a sector dominated by Israeli firms like AnyVision (Oosto) and Verint. More importantly, Wolfson’s personal involvement in guiding the strategy of a firm dedicated to privatized biometric watchlisting indicates that Next’s participation in Project Pegasus is not an incidental operational decision. It is part of a coherent strategic vision: the transformation of the retail environment into a “gated community” enforced by algorithmic surveillance.

2.3 Retail Intelligence: The Auror Platform

Complementing the biometric surveillance of Pegasus and Facewatch is the deployment of Auror, a “Retail Crime Intelligence” platform.

  • Functionality: Auror is a software platform that allows retailers to report crime incidents, share intelligence on offenders, and track vehicle license plates (LPR/ANPR).28 It connects retailers directly with law enforcement, allowing for the rapid transfer of evidence and intelligence packages.
  • The “Network Effect”: Auror claims to hold the “largest retail crime database”.30 By using Auror, Next plc contributes to a shared intelligence pool.
  • Integration with Axon: Auror has integrated with Axon, the provider of police body cameras and the Evidence.com platform.30 This creates a seamless digital pipeline from the shop floor to the police station.
  • The Israeli Connection: While Auror is New Zealand-based, the “Retail Tech” ecosystem it inhabits is heavily influenced by Israeli firms. For example, Trigo (frictionless checkout) and BriefCam (video analytics, owned by Canon but founded in Israel) are standard partners in this domain. The “behavioral analytics” and “frictionless” technologies mentioned in the intelligence requirements are often the entry point for more invasive surveillance. While direct evidence of Next using Trigo is not in the snippets, the Auror-Pegasus nexus confirms the intent to surveil.

Table 2: The Surveillance Ecosystem at Next plc

Initiative / Vendor Role The “Complicity” Vector
Project Pegasus Public-Private Partnership Next provides funding (£60k+) and data for police facial recognition operations.
Facewatch Facial Recognition Provider CEO Lord Wolfson served on the Advisory Board. Normalizes biometric watchlisting.
Auror Retail Crime Intelligence Aggregates offender data; integrates with police systems (Axon).
Facial Recognition Biometric Technology Used via Pegasus. Parallels Israeli “Blue Wolf” occupation technologies.

3. The “Total Platform” Multiplier: Enforcing the Stack

To understand the true scale of Next plc’s digital complicity, one must look beyond its own stores. Next is no longer just a fashion retailer; it is a Platform as a Service (PaaS) provider. This transformation amplifies its technographic footprint significantly.

3.1 The “Digital Landlord” Model

Through its Total Platform initiative, Next provides a complete suite of services—website, warehousing, distribution, returns, payments, and customer service—to third-party brands.

  • The Client List: Current clients include Reiss (majority owned by Next), Gap UK, Joules, Victoria’s Secret (UK), Made.com, JoJo Maman Bébé, and Childsplay Clothing.1
  • The Proposition: Next tells these brands: “Use our infrastructure. It’s better, faster, and cheaper than building your own.” Next charges a commission on sales (targeting 5-7% net margin).32

3.2 Inherited Complicity: The Blast Radius

This centralization creates a massive “blast radius” for Israeli technology. When a brand like Gap UK signs up for Total Platform, they do not build their own cybersecurity stack. They inherit Next’s stack.

  • Forced Adoption:
    • Traffic Filtering: All e-commerce traffic for Gap UK is routed through Next’s infrastructure, which means it is inspected by Check Point firewalls.
    • Data Protection: Customer data for Reiss is stored in databases secured by CyberArk and Wiz.
    • Surveillance: Inventory in Next’s warehouses (which service these brands) is protected by the Claroty/Verint OT security stack.
  • The Wholesaler Effect: Next plc effectively acts as a wholesaler of Israeli cybersecurity to the UK high street. Third-party brands likely have no visibility into, or control over, the provenance of the security vendors used by Next. They are “passive consumers” of the Unit 8200 stack.
  • Economic Impact: As Next monetizes this platform (adding millions to its bottom line 10), the revenue stream for the vendors embedded within it grows. A contract with Next is now effectively a contract with a conglomerate of fashion brands, making Next a “whale” client for firms like Check Point and Wiz.

3.3 The Infobip Connector: R&D in Jerusalem

A key component of the Total Platform’s customer engagement capability—handling SMS, WhatsApp, and fraud alerts for millions of customers—is Infobip.

  • The Partnership: Next plc partnered with Infobip to manage messaging and fraud protection, using AI-powered “Signals” and Rich Communication Services (RCS).23 This ensures that when a Next (or Gap UK) customer gets a delivery notification, it flows through Infobip’s pipes.
  • The Israeli Pivot: Infobip, while founded in Croatia, has aggressively pivoted toward the Israeli tech ecosystem.
    • R&D Center: Infobip established an office in Mevaseret Zion, Jerusalem, describing it as a “hub for all business operations” and a center for R&D.12 This is not a sales outpost; it is an engineering hub.
    • Acquisitions: Infobip acquired Peerless Network to expand its voice presence in the US and holds a strong presence in the Israeli B2D (Business-to-Developer) market.13
    • Implication: By relying on Infobip, Next utilizes a communications layer that is partly engineered in Jerusalem, integrating the “Start-Up Nation” innovation ecosystem into the customer journey of UK shoppers.

4. Cloud & Data Sovereignty: The Azure-Israel Axis

Next plc’s digital transformation involves a massive overhaul of its IT infrastructure, moving away from legacy mainframes to a cloud-first architecture. This transition brings it into the orbit of the major cloud providers who are deeply entangled with the Israeli state.

4.1 “Project Future” vs. “Total Platform” Transformation

The intelligence requirements asked to investigate “Project Future.” It is crucial to distinguish between two distinct but parallel retail transformations:

  • Asda’s “Project Future”: The research snippets 35 identify “Project Future” as Asda’s massive IT separation program from Walmart. This project involves moving Asda off Walmart’s systems to a new SAP/Azure stack.
  • Next’s Transformation: Next’s equivalent is not named “Project Future” but is simply its Digital Transformation and Total Platform investment. Next plans to spend £542 million on modernizing technology.10 Unlike Asda, which is “buying” a new stack to replace Walmart’s, Next is “building” a stack to sell to others.
  • The Integrators: The integrators for these massive projects are often the same. Tata Consultancy Services (TCS) is heavily involved in Asda’s transformation 36 and is a common partner for Next.

4.2 Microsoft Azure and “Cloud Infinity”

The audit confirms that Next plc relies heavily on Microsoft Azure for its cloud transformation, often referred to as “Cloud Infinity”.11

  • The “Project Nimbus” Connection: While Next does not appear to be a direct signatory to “Project Nimbus” (the $1.2 billion Israeli government cloud contract), its primary cloud partner, Microsoft, is a co-winner of that contract (alongside Google).
  • Data Center Operations: To support Nimbus and regional demand, Microsoft opened a new cloud datacenter region in Israel (Israel Central) in 2024.37
  • The Sovereignty Risk: While Next plc likely hosts UK customer data in UK/EU regions (e.g., UK South) for GDPR compliance, the global nature of Azure’s fabric means Next is financially supporting the cloud provider that powers the Israeli government and military. The “control plane” of Azure is global.
  • Infobip & Azure: The combination of Azure (infrastructure) and Infobip (communications) creates a cloud stack where both key vendors have significant, strategic investments in Israel.

4.3 Data Center Tech: The Honeywell Factor

The physical data centers used by Next (whether owned or collocated) utilize Honeywell solutions for management and cooling.38 Honeywell is a major defense contractor with significant business in Israel, further militarizing the supply chain, albeit at a facilities management level.

5. Leadership, Financials & Passive Complicity

The technographic alignment with Israel is mirrored by financial and leadership ties that suggest a deliberate corporate strategy rather than accidental vendor selection.

5.1 Lord Wolfson and The Wolfson Family

Lord Simon Wolfson is the long-serving CEO of Next plc and a prominent Conservative peer.

  • Philanthropic Ties: The Charles Wolfson Charitable Trust, associated with the family, has been linked to funding initiatives that support Israeli interests.39 While allegations from some sources must be verified carefully, the general alignment of the Wolfson family with conservative and pro-Israel causes in the UK is a matter of public record.
  • The Surveillance Link: As noted in Section 2.2, Wolfson’s personal advisory role at Facewatch 7 aligns him directly with the surveillance technology industry. This suggests that the decision to fund Project Pegasus aligns with his personal views on policing and technology.

5.2 Corporate Treasury & Pension Fund Holdings

An analysis of financial filings reveals that investment vehicles associated with Next plc—or the massive institutional funds that hold Next (e.g., BlackRock, Vanguard)—have significant exposure to the Israeli tech sector.

  • Co-Holding Patterns: Financial reports list holdings in Check Point Software, CyberArk, Nice Ltd, Wiz, and Elbit Systems within the same investment portfolios as Next plc.40
  • The Passive Complicity: While Next plc may not control these funds, the fact that its major shareholders (BlackRock, Vanguard) are also the major shareholders of Check Point and Elbit Systems creates a “circular economy” of complicity. Capital flows from Next’s profits into these funds, which then capitalize the Israeli defense sector.
  • Direct Treasury: More critically, if Next plc’s corporate treasury holds diversified assets (as implied by some filings listing “Next plc” alongside “Check Point” in asset lists 41), it represents direct financial investment in the occupation economy.

6. Conclusion: The Digital Complicity Score

Based on the evidence gathered, Next plc receives a High Digital Complicity Score.

6.1 Justification for Score

  1. Critical Dependency (The Unit 8200 Stack): Next is not casually using Israeli tech; its entire “Total Platform” revenue model is secured by it. The integration of Check Point, Wiz, SentinelOne, and CyberArk creates a “fortress” built on IDF-derived intellectual property. Divesting would require a complete re-architecture of their security, costing millions and taking years.
  2. Surveillance Funding (Project Pegasus): Next is not just buying surveillance; it is funding it. The contribution of £600,000 to Project Pegasus to deploy facial recognition in the public sphere is a direct endorsement of the “surveillance state” model.
  3. The Multiplier Effect (Total Platform): Next forces these technologies onto other brands (Gap, Reiss, Joules), acting as a distribution node for Israeli tech in the UK. This denies these brands the ability to choose a non-complicit stack.
  4. Ideological Leadership: CEO Lord Wolfson’s history with Facewatch and the family’s philanthropic footprint suggests this is a top-down alignment, not an accident of procurement.

6.2 Recommendations for Divestment & Pressure

For entities seeking to pressure Next plc regarding these ties, the audit suggests focusing on the following leverage points:

  • The “Total Platform” Weakness: Pressure the third-party clients (Gap, Reiss, Joules). Do they know their customer data is secured by Check Point and Wiz? Do they consent to their revenue streams flowing to vendors with deep ties to the IDF? “Unbundling” the security stack would be technically difficult for Next, making this a high-leverage demand.
  • Project Pegasus Public Relations: Publicize Next’s funding of this initiative. The link between “loss prevention” and “mass biometric surveillance” is a reputational vulnerability. Civil liberties groups are natural allies here.
  • The “Cloud Infinity” Contract: As Next expands its cloud footprint with Azure and Wiz, it is likely negotiating long-term enterprise agreements. Now is the window to demand vendor neutrality and an audit of data sovereignty to ensure no data is routed through Israeli data centers or processed by R&D centers in the occupied territories (or Jerusalem).

Table 3: The Next plc Complicity Matrix

Domain Vendor/Project Origin The “Unit 8200” Connection
Network Security Check Point Israel Founder Gil Shwed (Unit 8200). “Gold standard” for IDF cyber-defense.
Cloud Security Wiz Israel/US Founders ex-Unit 8200 (Adallom team). Integrated with Check Point.
Endpoint/Identity SentinelOne / CyberArk Israel Deep integration creates a “walled garden” of Israeli security.
Surveillance Project Pegasus UK (Gov/Private) Funded by Next. Utilizes facial recognition logic paralleling Israeli systems.
Customer Comms Infobip Croatia/Israel R&D Center in Jerusalem; acquisition of Peerless.
Leadership Lord Wolfson UK Advisor to Facewatch; Family Trust links.

This audit concludes that Next plc is a Tier 1 Technographic Partner of the Israeli tech ecosystem within the UK retail sector. Its operational stability is contingent on the performance of vendors originating from the Israeli military-intelligence complex, and its future growth strategy (Total Platform) is designed to propagate this dependency across the market.

Report Author: Senior Cyber-Risk & Geopolitical Compliance Analyst

Date: November 26, 2025

Classification: INTERNAL / AUDIT USE ONLY

Works cited

  1. Global retailer NEXT boosts efficiency and savings using Zendesk AI, accessed November 26, 2025, https://www.zendesk.com/customer/next/
  2. The Digital Seeker: A Guide for Digital Teams to Build Winning Experiences 9780231554442 – DOKUMEN.PUB, accessed November 26, 2025, https://dokumen.pub/the-digital-seeker-a-guide-for-digital-teams-to-build-winning-experiences-9780231554442.html
  3. Annual Report and Accounts January 2023 – NEXT plc, accessed November 26, 2025, https://www.nextplc.co.uk/~/media/Files/N/Next-PLC-V2/documents/2023/annual-reports-and-account-jan-2023.pdf
  4. Check Point Enters Next Level of Strategic Partnership with Wiz to Deliver Integrated CNAPP and Cloud Network Security Solution, accessed November 26, 2025, https://www.checkpoint.com/press-releases/check-point-enters-next-level-of-strategic-partnership-with-wiz-to-deliver-integrated-cnapp-and-cloud-network-security-solution/
  5. Check Point & Wiz Partner on Integrated Security Solutions – Channel Insider, accessed November 26, 2025, https://www.channelinsider.com/security/check-point-wiz-cnapp-cloud-security/
  6. Check Point – Computacenter, accessed November 26, 2025, https://www.computacenter.com/partners/check-point
  7. REGISTER OF LORDS’ INTERESTS – London – UK Parliament, accessed November 26, 2025, https://www.parliament.uk/globalassets/documents/publications-records/house-of-lords-publications/records-activities-and-membership/register-of-lords-interests/register140519.pdf
  8. Project Pegasus to improve information sharing between police and retailers, accessed November 26, 2025, https://nbcc.police.uk/news/project-pegasus-to-improve-information-sharing-between-police-and-retailers
  9. Email to – Liberty, accessed November 26, 2025, https://www.libertyhumanrights.org.uk/wp-content/uploads/2023/10/Liberty-Joint-letter-to-retail-CEOS-regarding-Project-Pegasus-October-2023.pdf
  10. How Boots, B&Q, Next and John Lewis are leading the retail generative AI revolution, accessed November 26, 2025, https://www.retail-week.com/technology/how-boots-bandq-next-and-john-lewis-are-leading-the-retail-generative-ai-revolution/7046956.article
  11. What Leadership Style Does Next Use: Strategic Command Approach, accessed November 26, 2025, https://quarterdeck.co.uk/articles/what-leadership-style-does-next-use
  12. Jerusalem – Infobip, accessed November 26, 2025, https://www.infobip.com/offices/jerusalem
  13. CONVERSATIONAL COMMERCE – Infobip, accessed November 26, 2025, https://cdn-web.infobip.com/uploads/2023/07/Conversational-Commerce-Leaderboard-Reprint-2023_Infobip-1.pdf
  14. $45-$74/hr Checkpoint Firewall Jobs (NOW HIRING) Nov 2025 – ZipRecruiter, accessed November 26, 2025, https://www.ziprecruiter.com/Jobs/Checkpoint-Firewall
  15. Author: Hazel Moises – W.Media, accessed November 26, 2025, https://w.media/author/hazelw-media/
  16. Security startup Wiz enters unicorn club after $130m Series B round – FinTech Global, accessed November 26, 2025, https://fintech.global/2021/03/30/security-startup-wiz-enters-unicorn-club-after-130m-series-b-round/
  17. Check Point Software Technologies and Wiz Enter Strategic Partnership to Deliver End-to-End Cloud Security, accessed November 26, 2025, https://www.checkpoint.com/press-releases/check-point-software-technologies-and-wiz-enter-strategic-partnership-to-deliver-end-to-end-cloud-security/
  18. UAE Stock Trading Shares List – Scribd, accessed November 26, 2025, https://www.scribd.com/document/884245936/UAE-Stock-Trading-Shares-List
  19. 2024 Annual Financial Statements and Additional Information – BlackRock, accessed November 26, 2025, https://www.blackrock.com/us/individual/literature/annual-financial-statements/afs-retail-diversified-equity-fund-en.pdf
  20. CyberArk and SentinelOne Team Up to Enable Step Change in Endpoint and Identity Security, accessed November 26, 2025, https://www.cyberark.com/press/cyberark-and-sentinelone-team-up-to-enable-step-change-in-endpoint-and-identity-security/
  21. VERITI AND CLAROTY, accessed November 26, 2025, https://web-assets.claroty.com/integration-briefs/veriti-and-claroty.pdf
  22. Half Year Results July 2025 – NEXT plc, accessed November 26, 2025, https://www.nextplc.co.uk/~/media/Files/N/next-plc-v4/documents/2025/half-year-results-july2025.pdf
  23. Infobip Partners with NEXT plc – CXM Today, accessed November 26, 2025, https://cxmtoday.com/news/infobip-partners-with-next-plc/
  24. Retailers to pay police to deter shoplifters as crime soars – Retail Gazette, accessed November 26, 2025, https://www.retailgazette.co.uk/blog/2023/09/shoplifters-supermarkets/
  25. Supermarket giants to crack down on shoplifting with face-scanning tech – Grocery Gazette, accessed November 26, 2025, https://www.grocerygazette.co.uk/2023/09/11/shoplifting-surge-police/
  26. REGISTER OF LORDS’ INTERESTS – London – UK Parliament, accessed November 26, 2025, https://www.parliament.uk/globalassets/documents/publications-records/house-of-lords-publications/records-activities-and-membership/register-of-lords-interests/register080115.pdf
  27. REGISTER OF LORDS’ INTERESTS – London – UK Parliament, accessed November 26, 2025, https://www.parliament.uk/globalassets/documents/publications-records/house-of-lords-publications/records-activities-and-membership/register-of-lords-interests/register150416.pdf
  28. What is Retail Crime Intelligence? – Auror, accessed November 26, 2025, https://www.auror.co/retail-crime-intelligence
  29. Introducing the future of Retail Crime Intelligence – Auror, accessed November 26, 2025, https://www.auror.co/the-intel/retail-crime-intelligence-platform
  30. Law Enforcement – Auror, accessed November 26, 2025, https://www.auror.co/us/law-enforcement
  31. ii view: retailer Next is really sweating its online business – Interactive Investor, accessed November 26, 2025, https://www.ii.co.uk/analysis-commentary/ii-view-retailer-next-really-sweating-its-online-business-ii531335
  32. ANNUAL REPORT & ACCOUNTS – NEXT plc, accessed November 26, 2025, https://www.nextplc.co.uk/~/media/Files/N/Next-PLC-V2/documents/2022/annual-reports-and-account-jan-2022.pdf
  33. Infobip expands to Israel in line with continued global growth, accessed November 26, 2025, https://www.infobip.com/news/infobip-expands-to-israel-in-line-with-continued-global-growth
  34. Croatia’s Infobip acquires US-based Peerless Network, secures $500mn funding, accessed November 26, 2025, https://www.intellinews.com/croatia-s-infobip-acquires-us-based-peerless-network-secures-500mn-funding-225650/
  35. U.K. Food Retailer ASDA, Bellis Finco PLC Assigne | S&P Global Ratings, accessed November 26, 2025, https://www.spglobal.com/ratings/en/regulatory/article/-/view/type/HTML/id/3162129
  36. Asda picks TCS for £189m post-Walmart digital transformation – Tech Monitor, accessed November 26, 2025, https://www.techmonitor.ai/leadership/digital-transformation/asda-picks-tcs-for-189m-post-walmart-digital-transformation
  37. Israel Data Center Market Investment Analysis Report 2022-2027 Featuring Key DC Investors – Business Wire, accessed November 26, 2025, https://www.businesswire.com/news/home/20230116005208/en/Israel-Data-Center-Market-Investment-Analysis-Report-2022-2027-Featuring-Key-DC-Investors—Adgar-AWS-Bezeq-Intl-Bynet-Data-Communications-EdgeConneX-Google-MedOne-Microsoft-Serverfarm—ResearchAndMarkets.com
  38. Data Center Solutions and Technologies – Honeywell, accessed November 26, 2025, https://www.honeywell.com/us/en/industries/data-centers
  39. How British ‘charities’ are aiding Israeli genocide in Gaza :: nournews, accessed November 26, 2025, https://nournews.ir/en/news/163820/How-British-%E2%80%98charities%E2%80%99-are-aiding-Israeli-genocide-in-Gaza
  40. Vanguard Investments Common Contractual Fund, accessed November 26, 2025, https://fund-docs.vanguard.com/ccf-interim-report-ftse-dev-world.pdf
  41. Domini Investment Trust – SEC.gov, accessed November 26, 2025, https://www.sec.gov/Archives/edgar/data/851680/000119312519100605/d673370dncsrs.htm
  42. 2025 Annual Financial Statements and Additional Information – BlackRock, accessed November 26, 2025, https://www.blackrock.com/cl/literature/annual-financial-statements/afs-ishares-msci-eafe-other-etfs-07-31-en.pdf
  43. 2025 Interim Financial Statements, accessed November 26, 2025, https://mdm.ca/multimedia/financial-statements/interim/mdpim-international-equity-pool-e.pdf
  44. TRS Long Equity and Fixed Income Publicly Available Holdings* as of October 31, 2025, accessed November 26, 2025, https://www.trs.texas.gov/sites/default/files/migrated/public_equity_holdings.pdf

Related News & Articles