Cybersecurity experts warned retailers as criminals boasted of snatching the personal data of 20 million Co-op customers who signed up to the supermarket chain’s membership card scheme
Businesses have been urged to take the threat of further cyber attacks “very seriously” – after three household names were targeted in a week. Web security experts warned retailers as criminals boasted of snatching the personal data of 20 million Co-op customers. Toby Lewis of cybersecurity firm Darktrace said: “Ransomware attacks are inherently opportunistic, with many groups operating a sort of spray and pray approach, either directly or through the larger criminal ecosystem. It’s a timely reminder for organisations to take the threat very seriously, and consider both their protections, but probably more importantly, their contingency planning for keeping their business running when the inevitable happens.”
Chaos at the Co-op comes amid an ongoing attack at M&S and attempts to tap into systems at posh department store Harrods. A group, calling itself DragonForce, said it was behind all three incidents, with members claiming the Co-op attack was far more serious than bosses had told the public.
The retailer previously said it had had a “small impact” but later accepted that hackers “accessed data relating to a significant number of our current and past members.” M&S was forced to shut down some of its systems after hackers launched a major ransomware attack almost two weeks ago. The store has suspended online orders and urged customers to shop in person this bank holiday weekend.
All Harrods sites, including the flagship Knightsbridge store, have remained open and customers can continue to shop on the website. A spokesperson said: “We recently experienced attempts to gain unauthorised access to some of our systems. Our IT security team immediately took proactive steps to keep systems safe and as a result, we have restricted internet access at our sites today.”
An M&S spokesperson said: “We’ve written to 4,000 customers to share the good news that we can fulfil their food orders to be collected in store. Unfortunately, a small proportion of orders cannot be fulfilled. We’ve made these customers aware, organised a refund and we are truly sorry.”
Government sources say they have involved ransomware and there is no evidence of foreign state involvement. Pat McFadden, Chancellor of the Duchy of Lancaster, said firms must treat cyber security as an “absolute priority” – as the government is increasing its support for retailers.
Mr McFadden will use a speech to the CyberUK conference in Manchester next week to highlight moves to “bolster our national defences” including the forthcoming Cyber Security Bill. He is expected to tell attendees: “These attacks need to be a wake-up call for every business in the UK.”
“In a world where the cybercriminals targeting us are relentless in their pursuit of profit – with attempts being made every hour of every day – companies must treat cyber security as an absolute priority.
“We’ve watched in real-time the disruption these attacks have caused – including to working families going about their everyday lives. It serves as a powerful reminder that just as you would never leave your car or your house unlocked on your way to work. We have to treat our digital shop fronts the same way.”
The National Cyber Security Centre is working closely with companies affected by the attacks. A hacking group known as Scattered Spider is said to be behind the M&S attack, although this hasn’t been confirmed. It remains unclear if the three attacks are linked.
“We are ready to support you,” Mr McFadden is expected to say. “The National Cyber Security Centre is standing ready to support businesses and provide advice, and guidance, on how to raise the cyber security bar.”
