'Get the people fed' say islanders hit by Co-op cyber attack
Islay isn't the obvious location for the frontline of cyber crime but the picturesque island famous for its wildlife and whisky distilleries is dealing with the real world impacts of the major supermarket hack.
The targeting of retailers including Marks and Spencer and Co-op has led to sporadic empty shelves across UK stores as the companies slowed deliveries and shut down parts of their IT systems in response to cyber attacks.
In most places, disappointed customers at least have the option of visiting other supermarkets to pick up supplies. But communities across Scotland's Western Isles generally don't have that luxury.
In this part of the country, Co-op is often the only large store, with some smaller independent retailers operating.
"The Co-op is so important here," said Brian Palmer, editor of local newspaper, The Ileach.
"We don't think because we live here that we should have every convenience you get on the mainland but I think a lack of food is probably stretching it a wee bit."
No one is starving as a result of shortages but there is clear frustration with the lack of fresh food available.
Staff at the Bowmore Co-op said the last full delivery was at the start of May. There have since been smaller deliveries, but not of what is required.
The first aisle of the shop usually stocked with chilled meat, fruit and vegetables was almost completely bare on Friday afternoon. As was the bread section shortly after a morning delivery.
"It's easy to shop when there's nothing to pick from," one customer joked as they left the store.
A Co-op worker said they had dealt with red weather warnings and covid but "no one understands a cyber attack."
The company told the BBC last week that the attack on its systems meant store deliveries had been hit and the hack had resulted in "significant" amounts of customer data being stolen.
Co-op said "remote lifeline stores" will receive extra deliveries soon.
A "spokesperson said: "We take our responsibility to our Scottish island stores and communities very seriously.
"As a result of the Cyber-attack, and the steps we took to keep our systems safe, we currently have a temporary contingency stock ordering and delivery process, where we have prioritised the quantity of stock and deliveries to these lifeline stores.
"From Monday, 12 of the most remote lifeline stores will receive treble the volume of available product, and another 20 lifeline stores will get double the volume.
"We would like to thank all members, customers and our amazing store colleagues for their support and goodwill through this time.
Construction business manager Donald Gillies said he's been unable to provide a good lunch for his site workers in port Ellen throughout the last week.
Asked if enough was being done to deliver food he said: "That's tosh (rubbish)."
"It's poor, it's really poor. Something has gone wrong in the IT system and like everything else in society it's all computer-driven and no one can make a bloomin' decision to send food over.
"Get the people fed."
Jude McCorry, chief executive of the Cyber and Fraud Centre based in Edinburgh, said it can take along time for companies to fully recover from cyber attacks.
"Even companies we don't think of as tech firms rely heavily on complex systems that take time to recover," she said,
"We know from past experience that some cyber attacks are debilitating for months.
"I'm not saying there'll be this level of disruption for weeks and months, but it can take a long time for organisations to get back to the way they were before an attack."
On Islay, people are full of praise for the local Co-op workers, they know it's not a local issue.
Sheena MacKellar from Islay Gaelic Centre took aim at the group behind the hack.
"These people are selfish. They are affecting the wrong people.
"We're hard working honest people and we're the ones who are suffering and having to work round it.
"But we're islanders, we're made of stronger stuff."
Co-op cyber attack leaves island shop shelves empty
Co-op cyber attack affects customer data, firm admits, after hackers contact BBC
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
an hour ago
- Yahoo
Hit by a cyber-attack? Seven ways to protect yourself
Almost every week seems to bring news of a cyber-attack on a company, or organisation, and fears over what personal data the hackers have managed to get hold of. Last month, the footwear and sports apparel company Adidas revealed that some of its customers' personal information had been stolen, although it said passwords, credit card and other payment data were not compromised. In another incident, the personal data of hundreds of thousands of legal aid applicants in England and Wales dating back to 2010 was accessed. And these came hard on the heels of cyber-attacks that caused huge disruption at Marks & Spencer and the Co-op. Related: Clothing shortages, food waste and millions lost each day: inside the M&S cyber-attack chaos If a news story emerges about a cyber incident, and it is a company or organisation that you use, or have used in the past, keep an eye out for an email from it. Affected companies will usually contact customers to give them more information about what happened and what they should do. Sometimes it will be a certain category of customer who has had their data stolen, or only people in certain countries. In the case of Adidas, it appears to be those who have contacted the customer service helpdesk in the past, which will rule out a lot of people. Sometimes, the email will bring good news and say you are not one of those affected. If your data has potentially been accessed, there will usually be some information on action you should take, or a link to a 'frequently asked questions' page. In some cases, you may be offered free access to a support service run by a cybersecurity company, or credit reference agency. If you have had any dealings with a company or organisation that has suffered a cyber-attack, change the password you use for that website, or app, immediately. Always make sure you have strong passwords, and do not use the same one on more than one account. The general advice is make each password at least 12 characters long and use a combination of numbers, upper- and lower-case letters, and symbols. Avoid things that are easily guessed or can be found online, such as your pet's name, your birthday or favourite sports team. 'A good way to make your password difficult to crack is by combining three random words to create one,' says the UK's National Cyber Security Centre. It gives as an example something like Hippo!PizzaRocket1. 'Consider using a password manager to generate and store strong, unique passwords,' says the online security company NordVPN. Two-step authentication is something you can set up for your email and other important online accounts to add an extra layer of security. It involves providing something that only you should have access to – typically it will be code generated by an authenticator app or sent to your phone you have registered with the organisation. Turn two-step authentication on for every service that offers it. Phishing emails used by fraudsters will often reference a cyber-attack that has been in the news to try to hook people in who are customers or users of that company or organisation. Sometimes fraudsters will have personal information which they obtained via an incident, or other means, which can make them sound more authentic. Do not click on a link or attachment in an email, text message or social media post unless you are absolutely sure it is legitimate. It could take you to a fake website or contain malware designed to steal your personal information. M&S has told potentially affected customers that 'you might receive emails, calls or texts claiming to be from M&S when they are not, so do be cautious'. It added: 'Remember that we will never contact you and ask you to provide us with personal account information, like usernames, and we will never ask you to give us your password.' If someone says they are from a company or organisation you use, and you cannot be 100% sure who you are dealing with, ignore the email, or hang up and find the official contact details if you want to check with it. If your personal data has been stolen, it is worth keeping tabs on your credit record (the detailed file of your financial history used by lenders to assess your creditworthiness) in case fraudsters attempt to take out loans or other products in your name. For example, if your employer has been hit by a cyber-attack, the data that may have been accessed could include your name, address, national insurance number, date of birth, bank account, salary and, sometimes, identity documents such as your passport. There is the potential for this type of information to be combined and used to commit identity fraud. The UK's main credit reference agencies are Equifax, Experian and TransUnion, and you can access your credit report in different ways – some free, some paid-for. Credit Karma and ClearScore offer access to your credit report free for life. Experian offers Identity Plus, which will monitor your personal, financial and credit information and alert you if it detects any suspicious activity. It is a paid-for service, but the cost may be covered for you by an organisation if data you hold with it has been stolen. If you are turned down for a financial product, such as a credit card or loan, despite having a good credit rating, or you stop receiving statements from your bank for no reason, it could be a sign someone has been using your identity. Other, more obvious signs are if you start to get letters relating to debts that are not yours, or your bank statement mentions an item you have not bought. Most financial and shopping scams start on social media and tech platforms, say banks. Again, be wary, as fraudsters may have obtained details about you that they can use to convince you that you are having a conversation with someone you know. Related: How to protect yourself from scams: six easy ways to stay safe There has been a rise in recent years in so-called 'Hi Mum' scams, in which fraudsters pose as loved ones on services such as WhatsApp. Someone might get in touch pretending to be a family member and saying they need cash quickly to pay a bill because they have been locked out of their online banking after getting a new phone. Do not rush into transferring money, even if you are told it is urgent. Take time and check that you are really in touch with a relative or friend. When shopping online, retailers often offer to store your payment card details for a faster checkout next time (sometimes you have to untick a box to prevent this from happening automatically). In some cases, by agreeing to this, you are giving permission for your details to be stored by a third party rather than the company you are buying from. There is less chance someone will be able to fraudulently obtain your card details if you do not allow them to be stored on more retailers' systems than is necessary – even if it means it takes slightly longer to buy your items next time you use the site. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
a day ago
- Yahoo
I face losing my electricity but EDF can't replace my RTS meter
I face losing my electricity supply at the end of June when the Radio Teleswitch Service (RTS), which controls my meter, is switched off. Every time I log into my EDF account I get a reminder and a link to book a visit for a meter replacement, but there are never any slots available. I've been trying since December. On the two occasions I managed to get one, EDF cancelled or failed to show. TK, West Sussex SHA in Glasgow also fears being left high, dry and chilly when the RTS, which switches electric heating and hot water systems between peak and off-peak rates, is phased out. He has been trying to get ScottishPower to replace his RTS meter for 18 months. He was offered an appointment for a date that doesn't exist, and later a date for the previous year. ScottishPower, keen to be helpful, then booked him in one month after the switch-off. Up to 300,000 households could be in a similar predicament, according to reports, because RTS meters aren't being replaced in time for the 30 June deadline. EDF has now confirmed an appointment for TK, and promised to pay the mandatory compensation due for the cancellations. 'If an appointment isn't immediately available, customers will be placed on a priority list to be booked in ahead of the 30 June deadline,' it says. ScottishPower tells me that 80% of its customers have completed, or booked, appointments, and that it has quadrupled its weekly installation rate. It says it has contacted SHA to agree a date. The utilities regulator Ofcom tells me the shutdown will be phased, region by region, over three months, rather than on one day in June. 'Ofgem has demanded action plans from every supplier, which we are scrutinising on an ongoing basis to ensure that robust contingencies are in place to protect any customers who remain on RTS meters after the phased switch-off process begins,' it says. We welcome letters but cannot answer individually. Email us at or write to Consumer Champions, Money, the Guardian, 90 York Way, London N1 9GU. Please include a daytime phone number. Submission and publication of all letters is subject to our terms and conditions. Sign in to access your portfolio
Yahoo
a day ago
- Yahoo
Bus drivers continue strike action over pay
Hundreds of bus drivers across the west of Scotland are continuing their strike action over pay. The Unite union said Stagecoach had failed to improve on a 4% "strings attached" offer tabled last November. It said 98% of its members had voted in favour of the industrial action - involving drivers at depots in Ayr, Arran, Ardrossan, and Kilmarnock. Stagecoach has said it wants a "fair and sustainable" pay deal for drivers that preserves the viability of bus services. The industrial action began last month and is planned to continue with six weeks of continuous action between 9 June and 21 July. Pickets were expected all day at the company's Ayr and Kilmarnock bus stations. Stagecoach said its services would be disrupted due to the industrial action. It said it planned to operate a "limited service with the drivers available". "We're working hard to minimise the impact of this disruption, but unfortunately, the limited services we're running will affect customers travelling in and around Ayrshire," it said on its website. "We're very sorry for the inconvenience and thank you for your patience and understanding." It said it would share any updates of the impact on its services via its website. Bus routes disrupted as Stagecoach drivers strike
