Co-op cyberattack exposes personal data of all 6.5 million members — what to do next
As reported by Cybernews, Shirine Khoury-Haq, CEO, gave an interview on the BBC this week expressing her regret over the events and confirming the details.
The hackers, believed to be members of the Scattered Spider group, managed to copy the member list which included personal details such as full names, home addresses, email addresses, phone numbers and birth dates.
Fortunately, as Co-op had previously invested in detection systems that alerted it to the unusual behavior within a few hours, the group was able to shut down parts of its system within hours of the breach keeping the attackers from deploying the DragonForce ransomware.
This means that no financial data, purchase history or transaction data was taken and that the hackers were unable to fulfill their goal of using the ransomware attack to blackmail the group. It also means that the attackers were unable to erase what they did, and their code was sent back to authorities resulting in arrests being made.
The attack on Co-op occurred in April, just days after the attack on M&S and is believed to be part of a broader campaign that also resulted in a cyberattack targeting Harrods. The Scattered Spider group uses deception tactics to trick IT helpdesk employees into giving its hackers access to a network; the attacks often result in empty grocery store shelves or other businesses reverting back to paper based systems in order to continue operations.
The Information Commissioner's Office, the UK's data protection watchdog has said that anyone concerned about their personal data should visit its website for information and support.
Get instant access to breaking news, the hottest reviews, great deals and helpful tips.
Additionally, Co-op members should be on alert for any signs of phishing attacks since threat actors will be looking for vulnerable targets using this stolen data. So be on alert for signs of phishing scams and social engineering attacks so you can avoid falling victim to them. Hackers will often leverage all the information they have on a potential target in order to try and trick you into clicking on a malicious link or downloading a malicious app or other software that appears legitimate but actually contains viruses.
Likewise, never click on unexpected links, QR codes or attachments or links from unknown senders. Verify through independent means if someone contacts you asking you to download or click on something. Likewise, don't share personal information with people you don't know online, and clear out any old emails that may contain personal details and information.
If you don't already have one of the best antivirus software solutions installed on your devices, make sure you get one. They have multiple features that can help protect you when you go online from VPNs and website alerts to identity monitoring and phishing protection.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Tom's Guide
2 days ago
- Tom's Guide
Co-op cyberattack exposes personal data of all 6.5 million members — what to do next
The cyberattack at the Co-op Group is now confirmed to have involved the personal data of all 6.5 million members. As reported by Cybernews, Shirine Khoury-Haq, CEO, gave an interview on the BBC this week expressing her regret over the events and confirming the details. The hackers, believed to be members of the Scattered Spider group, managed to copy the member list which included personal details such as full names, home addresses, email addresses, phone numbers and birth dates. Fortunately, as Co-op had previously invested in detection systems that alerted it to the unusual behavior within a few hours, the group was able to shut down parts of its system within hours of the breach keeping the attackers from deploying the DragonForce ransomware. This means that no financial data, purchase history or transaction data was taken and that the hackers were unable to fulfill their goal of using the ransomware attack to blackmail the group. It also means that the attackers were unable to erase what they did, and their code was sent back to authorities resulting in arrests being made. The attack on Co-op occurred in April, just days after the attack on M&S and is believed to be part of a broader campaign that also resulted in a cyberattack targeting Harrods. The Scattered Spider group uses deception tactics to trick IT helpdesk employees into giving its hackers access to a network; the attacks often result in empty grocery store shelves or other businesses reverting back to paper based systems in order to continue operations. The Information Commissioner's Office, the UK's data protection watchdog has said that anyone concerned about their personal data should visit its website for information and support. Get instant access to breaking news, the hottest reviews, great deals and helpful tips. Additionally, Co-op members should be on alert for any signs of phishing attacks since threat actors will be looking for vulnerable targets using this stolen data. So be on alert for signs of phishing scams and social engineering attacks so you can avoid falling victim to them. Hackers will often leverage all the information they have on a potential target in order to try and trick you into clicking on a malicious link or downloading a malicious app or other software that appears legitimate but actually contains viruses. Likewise, never click on unexpected links, QR codes or attachments or links from unknown senders. Verify through independent means if someone contacts you asking you to download or click on something. Likewise, don't share personal information with people you don't know online, and clear out any old emails that may contain personal details and information. If you don't already have one of the best antivirus software solutions installed on your devices, make sure you get one. They have multiple features that can help protect you when you go online from VPNs and website alerts to identity monitoring and phishing protection.
New York Post
2 days ago
- New York Post
Sun Valley has lost its dealmaking mojo — here's why
It's no surprise that the biggest story that came out of last week's so-called 'summer camp for billionaires,' the once high-profile Allen & Co. media conference, involved the investment bank directing its band of goon-squad security guards to chase away reporters from doing their job of interviewing some of the A-listers who still attend. The get-together on the lush grounds of the Sun Valley Lodge in Idaho is an also-ran because Big Media isn't so big anymore. Sure, some moguls still have their billions, but most run companies that are melting away, having been hurt by secular forces in their business. Their hold on American culture has also waned considerably as consumers of entertainment and news increasingly boycott wokeism. Advertisement It's no surprise that the biggest story that came out of last week's 'summer camp for billionaires,' the once high-profile Allen & Co. media conference, involved the investment bank directing its security guards to chase away reporters. Jack Forbes / NY Post Design That doesn't mean there was no business going down, though it was a far cry from years past. Four years ago, the Post's Lydia Moynihan first reported that media heiress Shari Redstone was at the confab shopping Paramount Global. An $8 billion merger with Skydance Media is now poised to be consummated as it awaits regulatory approval from the Federal Communications Commission. From what I understand, this year's Sun Valley chatter was focused on much smaller players and deals since the big guys (think companies like Warner Bros. Discovery and Comcast) are busy spinning off their money-losing assets. They're breaking up into smaller pieces to try to preserve some shareholder value. Plus, they have neither the stomach or the balance sheet in the foreseeable future for major acquisitions, particularly the transformation type. Advertisement The names that I understand were on the dealmaking watch list were the so-called local broadcasters. Many of them run affiliate stations of the major networks that serve local news to middle America. These are companies like Sinclair Broadcast Group, Gray Media and Cox Media Group. The latter is private and majority owned by private equity shop Apollo Management. Shares of Sinclair are up 16%, while Gray is up 30% – compared to a 5% rise in the S&P – based on merger and buyout chatter, telecom bankers and lawyers tell On The Money. Advertisement Shari Redstone at Sun Valley in 2021. Getty Images Apollo is looking for a buyer for Cox, I am told. So why would anyone bet that Little Media will survive the melting ice cube that is draining the Big Media business model? First the little guys do make money, though less so because of changes in the business. There is also a move by Trump regulators to preserve local TV media since it serves so much of the MAGA base. Advertisement Charlie Gasparino has his finger on the pulse of where business, politics and finance meet Sign up to receive On The Money by Charlie Gasparino in your inbox every Thursday. Thanks for signing up! Enter your email address Please provide a valid email address. By clicking above you agree to the Terms of Use and Privacy Policy. Never miss a story. Check out more newsletters That means networks like Paramount-owned CBS will be on a tight leash from DC to jack up fees on the locals to run their programming. On top of it all, these companies run lean and can run leaner, meaning you can grow profits through cuts, bankers argue. So who would buy them? Difficult to say since major players might not have the balance sheet. Maybe they will merge or begin swapping properties among themselves. Full disclosure: I didn't attend Sun Valley to report any of the above, which is another reason to skip the event.
Yahoo
3 days ago
- Yahoo
China Spy Agency Accuses Foreign Agents of Stealing Rare Earths
(Bloomberg) -- China's spy agency has accused overseas intelligence agencies of stealing controlled rare earth materials, reiterating its intent to curb smuggling even as Beijing agrees to review applications to export the vital industrial resource after trade talks with the US. The Dutch Intersection Is Coming to Save Your Life Advocates Fear US Agents Are Using 'Wellness Checks' on Children as a Prelude to Arrests LA Homelessness Drops for Second Year Manhattan, Chicago Murder Rates Drop in 2025, Officials Say Mumbai Facelift Is Inspired by 200-Year-Old New York Blueprint Without naming any country, the Chinese Ministry of State Security accused foreign entities of orchestrating the trafficking of these items, which Beijing sees as a strategic asset and has used as a bargaining chip in tariff negotiations with Washington. 'In recent years, foreign espionage and intelligence agencies and their agents have attempted to collude with and incite unlawful people in the country to steal our rare earth-related items by means of mail delivery, posing a serious danger to our national security,' the ministry said in a WeChat post Friday. China leveraged its dominance in producing these metals and rare earth magnets in the trade war with the US, which relies on Chinese supply to make a wide range of products including electric vehicles. Ford Motor Co. had to cut output at one of its plants after Beijing tightened export controls, and the curbs have deepened tensions with the European Union, which similarly depends on exports from China. The security ministry claimed to have foiled an attempt by an unnamed country to illicitly acquire rare earths for stockpiling. This involved a contractor mislabeling parcels as 'not originally made in China' and misrepresenting product content and ingredients, according to the post. The MSS also detailed other alleged smuggling tactics, such as hiding rare earth powders in ceramic tile ingredients or disguising them in water bottles labeled as 'machinery parts' for export. The ministry urged citizens to report suspicious activities related to rare earth resources. China and the US last month confirmed a deal to suspend drastic tariffs after Beijing vowed to process export licenses and the US agreed to lift its own controls on technology including some advanced AI chips. Signs of easing tensions have raised the chance of a broader deal and a meeting between President Donald Trump and Chinese leader Xi Jinping this year. What the Tough Job Market for New College Grads Says About the Economy How Starbucks' CEO Plans to Tame the Rush-Hour Free-for-All Godzilla Conquered Japan. Now Its Owner Plots a Global Takeover Forget DOGE. Musk Is Suddenly All In on AI Why Access to Running Water Is a Luxury in Wealthy US Cities ©2025 Bloomberg L.P. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
