Co-op Fends Off Hackers as Police Probe M&S Cyber Attack
The Co-op, a leading supermarket chain with over 2,500 stores in the UK, has taken proactive measures to fend off hackers attempting to gain access to its IT systems. The retailer has shut down parts of its IT infrastructure in response to the attack, which had a "small impact" on its call centre and back office operations.
Meanwhile, the Metropolitan Police has confirmed that it is investigating a major cyber attack at fellow retailer Marks & Spencer (M&S). "Detectives from the Met's cyber crime unit are investigating," said the police in a statement. It remains unclear whether there is any link between the two incidents.
The Co-op's Response
The Co-op has assured its customers that its shops and funeral homes are operating as usual, despite the attempted hack. "We are working hard to reduce any disruption to our services and would like to thank our colleagues, members, partners, and suppliers for their understanding during this period," said a spokesperson.
"We are not asking our members or customers to do anything differently at this point." The Co-op has taken proactive measures to prevent further attacks, but the full extent of the impact on its operations is still being assessed.
The M&S Cyber Attack
M&S has been affected by a cyber attack that has caused significant disruption to its business. The retailer has not disclosed what took out its online ordering systems or left empty shelves in stores, but experts believe the attack may be related to ransomware called DragonForce.
Ransomware is malicious software that locks an owner out of their computer or network and scrambles their data, with the criminals demanding a fee to unlock it. Ciaran Martin, the founding Chief Executive of the National Cyber Security Centre (NCSC), described the attack as "serious" and having "very difficult" consequences for M&S.
Expert Insights
Cyber experts have warned that the Co-op's decision to take its systems offline after an attempted hack is a rare move. Daniel Card, cyber expert at BCS, said it indicated a "loss of control" over the system. Scott Dawson, head of payment processing firm Decta, echoed this concern, stating that the hacking attempt "exposed alarming vulnerabilities" and should serve as a warning to others.
"Retailers can no longer afford to treat resilience as optional," added Dawson. "This becomes more of a trend." The BBC understands that the NCSC is urging other retailers to be vigilant and taking steps to increase their resilience against cyber attacks.
Previous Hacking Attempts
This is not the first time supermarkets have been targeted by hackers. In December 2024, Morrisons was impacted by an incident. The Co-op's decision to take proactive measures in response to the attack may be a response to this trend of cyber attacks on supermarket chains.
The National Cyber Security Centre (NCSC) is urging all retailers to remain vigilant and take steps to increase their resilience against cyber threats. As the threat landscape continues to evolve, it is essential for businesses to stay ahead of the curve and protect themselves against increasingly sophisticated cyber attacks.