Why cyberattacks on UK supermarkets are likely to continue
Harrods was the third major retailer to be targeted following ransomware attacks on Marks & Spencer and the Co-Op, for which a hacking gang has claimed responsibility.
It is believed that hackers impersonated employees while contacting the retailers' IT help desks to gain access to the network in all three cases. Ransomware attacks see malicious software used to deny access an organisation or user to their own files and data by encrypting them.
Marks & Spencer was attacked first on 21 April, leaving the retailer unable to accept contactless payments and website orders paused, which have not yet resumed. The attack disrupted M&S's stock ordering systems, leading to empty shelves and the suspension of meal deal offers.
Then on 30 April, Co-op confirmed a cyberattack impacting back-office services and leaving the company suspending VPN access for all staff. The attack led to delivery delays and disrupted deliveries leading to product shortages.
Harrods announced on 1 May that it had contained an attempted cyberattack and had restricted internet access as a precaution.
The Metropolitan Police is investigating.
Who is behind these attacks?
A notorious ransomware gang called Dragonforce is thought to be behind the attacks, explains Paul Bischoff, consumer privacy advocate at Comparitech, speaking to Yahoo News.
Dragonforce has claimed responsibility for all three attacks, although this has not yet been confirmed.
Technology specialist site BleepingComputer had previously said the attack on M&S was believed to have been conducted by a hacking collective known as Scattered Spider – deploying Dragonforce ransomware.
The National Cyber Security Centre (NCSC) has also suggested that tactics used by the Scattered Spider ransomware group were employed in the attacks.
Harrods became the latest retailer to be hit by cyber criminals. (Getty Images)
'Dragonforce claimed responsibility for 30 confirmed ransomware attacks in total, six of which occurred in 2025," Bischoff says. "That doesn't include dozens more unconfirmed claims that DragonForce made, but were never acknowledged by the targeted organisations.
'Ransomware locks down computer systems, steals data, or both (DragonForce does both). Companies are forced to pay a ransom or else face extended downtime, data loss, and putting customers at increased risk of fraud.'
Why such cyberattacks are likely to continue
The first reason why attacks on retailers are likely to continue is because ransomware remains an effective way for cybercriminals to make money, according to Bischoff.
So far there is no suggestion that any UK retailers have paid the ransom, but many targeted organisations do. Research by security firm Proofpoint in 2024 found that 64% of British firms targeted by ransomware paid the ransom.
Separately, software giant Cisco's annual Cybersecurity Readiness Index released on Wednesday found that only 4% of UK organisations achieved its 'mature' level of readiness be able to withstand modern cyber attacks – although this was a slight increase from the just 2% that achieved the status last year.
According to its study, 78% of UK organisations said they had faced an artificial intelligence-related security incident in the last year, but only 52% of those surveyed said they are confident their staff fully understand AI-related threats or grasp how the technology can be used to carry out attacks.
'This sort of thing is likely to happen more often," says Bischoff. "Ransomware is a proven way for cybercriminals to make money, and until that's no longer true, we'll continue to see ransomware attacks.'
Secondly, according to Bischoff, it's now becoming easier for criminals to launch such attacks, as they can simply pay 'rent' to other criminals to use malicious software and tactics. This means that relatively unskilled criminals can launch attacks.
'The rise of 'ransomware-as-a-service' businesses and AI make it easier for non-technical users to launch ransomware attacks and collect ransoms," Bischoff says
How will it affect British shops?
The NCSC has urged retailers to take preventative measures to prevent future attacks, with suggested measures including reviewing how IT help desks reset passwords for users and to enable two-step verification for all users.
Bischoff says that with such attacks continuing, British retailers are likely to modify how they store, secure and access data. "That includes regular backups, training employees to spot phishing emails, and disaster recovery planning," he says.
Cybersecurity expert Cody Barrow, chief executive of EclecticIQ, said the recent flurry of attacks showed cybercriminals are becoming bolder.
"It highlights an alarming trend: attackers are becoming increasingly opportunistic, exploiting weaknesses across complex, highly interconnected supply chains,' he said, warning that artificial intelligence was also making it easier for lower-skilled hackers to put together sophisticated attacks.
'What's deeply concerning is generative AI is accelerating the threat landscape.
'Sophisticated phishing campaigns, deepfake social engineering, and adaptive malware are now within reach of even low-skilled attackers. This widespread access to advanced attack tools is driving up attack volume, speed, and complexity.'
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
San Francisco Chronicle
43 minutes ago
- San Francisco Chronicle
Judge denies Justice Department request to unseal Epstein grand jury transcripts
NEW YORK (AP) — A federal judge in New York who presided over the sex trafficking case against the late financier Jeffrey Epstein has rejected the government's request to unseal grand jury transcripts. The ruling Wednesday by federal Judge Richard Berman in Manhattan came after the judge presiding over the case against British socialite Ghislaine Maxwell, Epstein's former girlfriend, also turned down the government's request. Maxwell is serving a 20-year prison sentence after her conviction on sex trafficking charges for helping Epstein sexually abuse girls and young women. Epstein died in jail awaiting trial. A Justice Department spokesperson declined to comment. Berman said the information contained in the Epstein grand jury transcripts 'pales in comparison to the Epstein investigative information and materials in the hands of the Department of Justice.' According to Berman's ruling, no victims testified before the Epstein grand jury. The only witness, the judge wrote, was an FBI agent 'who had no direct knowledge of the facts of the case and whose testimony was mostly hearsay.' The agent testified over two days, on June 18 and July 2, 2019. The rest of the grand jury presentation consisted of a PowerPoint slideshow shown during the June 18 session and a call log shown during the July 2 session, which ended with grand jurors voting to indict Epstein. Both of those will also remain sealed, Berman ruled. Maxwell's case has been the subject of heightened public focus since an outcry over the Justice Department's statement last month saying that it would not be releasing any additional documents from the Epstein sex trafficking investigation. The decision infuriated online sleuths, conspiracy theorists and elements of President Donald Trump's base who had hoped to see proof of a government cover-up. Since then, Trump administration officials have tried to cast themselves as promoting transparency in the case, including by requesting from courts the unsealing of grand jury transcripts. 'The government is the logical party to make comprehensive disclosure to the public of the Epstein file,' Berman wrote in an apparent reference to the Justice Department's refusal to release additional records on its own while simultaneously moving to unseal grand jury transcripts. 'By comparison,' he added, 'the instant grand jury motion appears to be a 'diversion' from the breadth and scope of the Epstein files in the Government's possession. The grand jury testimony is merely a hearsay snippet of Jeffrey Epstein's alleged conduct.' Meanwhile, Maxwell was interviewed at a Florida courthouse weeks ago by Deputy Attorney General Todd Blanche, and the House Oversight Committee had also said that it wanted to speak with Maxwell. Her lawyers said they would be open to an interview but only if the panel were to ensure immunity from prosecution. In a letter Maxwell's lawyers, Rep. James Comer, the committee chair, wrote that the committee was willing to delay the deposition until after the resolution of Maxwell's appeal to the Supreme Court. That appeal is expected to be resolved in late September.
Newsweek
44 minutes ago
- Newsweek
Federal Judge Denies DOJ Request to Release Epstein Case Grand Jury Records
Based on facts, either observed and verified firsthand by the reporter, or reported and verified from knowledgeable sources. Newsweek AI is in beta. Translations may contain inaccuracies—please refer to the original content. A federal judge in New York has denied a government request to unseal grand jury transcripts from the sex trafficking case involving the late financier Jeffrey Epstein. U.S. District Judge Richard Berman issued the ruling Wednesday in Manhattan, just weeks after the judge overseeing Ghislaine Maxwell's case similarly rejected the government's bid. Maxwell, a British socialite and longtime associate of Epstein, is serving a 20-year prison sentence following her conviction for sex trafficking and aiding Epstein in the sexual abuse of underage girls and young women. Epstein died in jail in 2019 while awaiting trial on federal sex trafficking charges. A spokesperson for the Justice Department declined to comment on the latest ruling. This is a breaking news story. Updates to follow.
Yahoo
an hour ago
- Yahoo
UK must change Bitcoin rules to catch up with Trump
While Donald Trump pledges to make the US the 'crypto capital of the world' the UK is slipping further behind with outdated Bitcoin regulations, writes Gautam Pillai Rachel Reeves hasn't minced words lately in her pursuit of economic growth. She wants to take the regulatory boot off the neck of British businesses and put the UK 'at the forefront of digital asset innovation'. Fine words, but they don't match the reality. While Donald Trump pledges to make the US the 'crypto capital of the world' the UK is slipping further behind. Take just one example of this: Bitcoin treasury companies (BTCs). As Peel Hunt's research today shows, a new class of publicly listed companies has emerged to provide investors with equity exposure to Bitcoin. These firms raise capital through equity markets to buy and hold Bitcoin. Bitcoin is no longer a fringe, speculative asset. More than 160 public companies have now adopted a Bitcoin treasury strategy, collectively holding around 950,000 coins – more than four per cent of Bitcoin's circulating supply with a market value of over $110bn. But the development of these BTCs is turning into another case study in how the UK risks losing ground to the US and its crypto bro President. The top firms in the US have a combined market value of $130bn, but the top 10 BTCs in the UK are paltry by comparison – less than one per cent of that size combined. Why? The US environment is altogether friendlier. While the US has adopted modern standards that allow companies to reflect the real-time value of digital assets like Bitcoin, the UK is stuck with outdated risk-averse accounting rules that dampen transparency and discourage investors. UK regime is punitive towards Bitcoin Under our accounting rules, Bitcoin is still treated as an intangible asset. That means it is booked in the accounts at the cost of purchase, subject to impairment if the price falls – but the gains cannot be recognised unless the asset is sold. The economic reality is obscured. Investors must dig through footnotes to work out what the company is really worth. It is a regime totally unsuited to a liquid, publicly traded asset. In the US, this changed in 2023 when regulators introduced fair value accounting for digital assets. Gains and losses now go through the income statement, giving investors a clear view and companies a fair shot at reflecting performance. This reform played a critical role in allowing companies like Strategy to become credible Bitcoin proxy stocks, with transparency and investor trust at the core. Strategy is now worth more than $100bn. Meanwhile the UK is in the slow lane. The current treatment of Bitcoin discourages UK-listed companies from holding digital assets, even when it aligns with long-term strategy. It also creates asymmetry for investors. A rising Bitcoin price cannot be recognised, but a falling one must be recorded as a loss. That's not prudent regulation, more punitive. Companies like The Smarter Web Company (SWC) have already seen investor enthusiasm surge after disclosing Bitcoin treasury positions, despite the lack of accounting clarity. Imagine what could happen if UK firms were allowed to reflect fair value directly in earnings. What's missing is the courage to move. This is not a call for a deregulatory free-for-all. Holding Bitcoin in treasury requires robust governance, secure custody and clear disclosures. But none of that precludes updating the accounting standard, allowing more informed investors, attracting capital and sending a message that Britain still backs innovation against US markets stretching their lead. If the Chancellor is serious about loosening the heavy tread of the boot, she should start here. Gautam Pillai is head of fintech research at Peel Hunt Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
