Co-op Is Latest British Retailer to Be Hit by Cyber Attack
Britain's Co-op Group has confirmed that it was the victim of a cyber attack, with hackers attempting to break into its systems, just weeks after another major UK retailer, Marks & Spencer, fell prey to a similar incident.
The Co-op, which is owned by its members and operates over 2,300 food stores across the UK, as well as funeral care, legal and insurance businesses, said the attack had forced it to shut down some of its back office and call center operations. However, the retailer added that all its stores, online operations, and funeral homes were trading as usual and it was working to reduce disruption.
"We have recently experienced attempts to gain unauthorized access to some of our systems," a Co-op spokesperson said. "We have taken proactive steps to keep our systems safe."
The incident appears to have had less of an impact than the attack on Marks & Spencer, which has paused taking clothing and home orders through its website and app for the last six days.
A Wave of Cyber Attacks Hits British Retailers
Britain's high street retailers have been hit by a wave of cyber attacks in recent years, costing them tens of millions of pounds and often months of disruption. The attack on M&S has come during a bout of warm weather in Britain, when retailers would normally report an increase in demand for summer clothing.
Availability of some food products has also been affected in some stores. The National Cyber Security Centre is working with both companies and the National Crime Agency said last week it was aware of the M&S incident.
The Nature of the Attack Revealed
Cyber security experts have said that the fact that M&S took systems offline suggested it was a ransomware-related event. Technology specialist site BleepingComputer, citing multiple sources, said a ransomware attack that encrypted M&S's servers was believed to have been conducted by a hacking collective known as “Scattered Spider.”
Scattered Spider comprises small clusters of people, including youngsters, who collaborate on and off on specific jobs, security experts and officials have said. It has been blamed for unusually aggressive cybercrime sprees, and in 2023, members of its community locked up the networks of casino operators Caesars Entertainment and MGM Resorts International and demanded hefty ransom payments.
Experts Warn of Sophisticated Threat
Nathaniel Jones, VP of Security & AI Strategy at cybersecurity company Darktrace, said the alleged confirmation that Scattered Spider was behind the M&S attack via the DragonForce encryptor highlighted the sophisticated threat this group posed to major organizations.
"Members of the group didn’t just exploit technical vulnerabilities but manipulated people, especially IT help desks, through phishing, Multi-Factor Authentication (MFA) bombing, and SIM swapping to gain access," Jones said. "This type of attack is becoming increasingly common and poses a significant threat to businesses and individuals alike."
Five Members Charged by U.S. Prosecutors
Five members alleged to be in the group were charged by U.S. prosecutors in November.
The incident highlights the growing concern over cyber attacks on British retailers, with many more expected to be hit in the coming months.
Stay Safe Online
If you are a business or individual concerned about cyber security, it is essential to take proactive steps to protect yourself. Here are some tips:
- Regularly update your software and systems to prevent exploitation of vulnerabilities
- Implement strong passwords and two-factor authentication to prevent unauthorized access
- Be cautious when clicking on links or providing personal information online
- Monitor your accounts regularly for suspicious activity
By taking these steps, you can significantly reduce the risk of a cyber attack on your business or personal life.