The Co-op Cyberattack Unveiled
Hackers accessed and gained control of co-op members' private information, prompting an official apology from the co-op for the data breach.
In an apologetic statement, the Co-op has admitted to a data breach, with hackers gaining access to members' personal information such as names, contact details, and membership numbers. Fortunately, no financial data or passwords were compromised in the attack [1][3].
The retail giant faced sustained malicious attempts to breach its systems, leading to parts of its IT infrastructure being shut down earlier this week. The recent string of cyber incidents has also affected fellow retailers Harrods and Marks & Spencer. M&S is still grappling with the consequences of a ransomware attack that rendered their online operations inoperable since last Friday [2].
The National Crime Agency (NCA) is currently investigating these attacks separately but is mindful of their potential interconnectedness [2]. A Co-op spokesperson explained:
The Co-op's back office and call centre services have been affected, but its more than 2,000 grocery stores and 800 funeral parlours across the UK continue to operate as usual [2].
In light of these incidents, the National Cyber Security Centre (NCSC) views them as a "wake-up call" for businesses, urging leaders to follow guidelines on the NCSC website to fortify their defenses and respond effectively to cyber threats [2]. To that end, CEO Dr. Richard Horne stated, "The disruption caused by the recent incidents impacting the retail sector are a source of concern… These incidents should act as a wake-up call to all organizations" [2].
The Co-op is collaborating with the NCSC and NCA to implement security measures to prevent further unauthorized access to its systems [1][3]. In meantime, the retail sector must remain vigilant as ransomware-as-a-service operations continue to target UK retailers [4].
By Ruby Cline, PA
Enrichment Data:
Leverage these insights sparingly, ensuring they enrich the text instead of dominating it
- Investigation status: Co-op is working with the NCSC and NCA, implementing security measures to block further access[1][3].
- Attack method: DragonForce affiliates previously targeted Marks & Spencer and claimed responsibility for Harrods’ recent cyberattack attempt[4].
- Employee warning: Co-op internally cautioned staff about Microsoft Teams security risks, likely due to hackers' use of the platform for extortion [4].
- Ransomware-as-a-Service Operations: The incidents underscore a pattern of ransomware-as-a-service operations targeting UK retailers, with DragonForce affiliates demanding ransoms in exchange for stolen data deletion [4]. DragonForce, an infamous ransomware group, has asserted responsibility for the attack on the Co-op and claimed to possess data from approximately 20 million members, though the Co-op has not yet confirmed this figure [4].
- DragonForce affiliates, who previously targeted Marks & Spencer and claimed responsibility for Harrods’ recent cyberattack attempt, were reportedly responsible for the hack on the Co-op's system, according to recent insights.
- Despite the ongoing investigation by the NCA, the Co-op has admitted that the hackers were able to access and extract data, including personal data such as names and contact details of current and past members.
- In an apologetic statement, the Co-op is collaborating with the NCSC and NCA to implement security measures to prevent further unauthorized access to its systems following the data breach.
- The National Cyber Security Centre (NCSC) views the recent series of cyber incidents affecting retailers like Co-op, Harrods, and Marks & Spencer as a "wake-up call" for businesses, urging leaders to follow guidelines on the NCSC website to fortify their defenses and respond effectively to cyber threats.
