Major update as supermarket relaunches IT systems after cyber attack
The Co-op is set to turn online orders back on from today in a boost to shoppers.
1
A spokesperson for the supermarket told The Sun: 'Following the malicious third-party cyber-attack, we took early and decisive action to restrict access to our systems in order to protect our Co-op.
'We are now in the recovery phase and are taking steps to bring our systems gradually back online in a safe and controlled manner.'
They added that 'we have switched all our orders back to the normal supply processes and systems'.
The move will see stock levels return to normal in the coming days after the retailer faced widespread shortages over the past few weeks.
There will be more items available in Food stores and online from this weekend.
The Co-op also confirmed that it is working closely with its suppliers to restock its stores.
Shoppers have seen large gaps on Co-op shelves after the retailer was targeted by cyber criminals on April 30.
Customers have complained of shortages of fresh produce, ready meals, yoghurts and confectionery.
The attack also pushed contactless card payments offline in nearly one in ten stores, which forced customers to pay with cash or enter their PINs at the till.
The Co-op has confirmed that all forms of payments including contactless, and chip and pin are now working across all of its stores.
All iPhone and Android users must switch on two settings to stop bank-raiding attack – worrying sign means it's too late
The news comes after the retailer was forced to close part of its IT system following the attempted cyber attack.
This included restricting access to certain systems, impacting some back office functions and call centre services.
A fortnight ago the Co-op confirmed that some customers have had their private data stolen in the cyber attacks.
Personal details such as names, contact information and dates of birth of a 'significant number' of customers and past members were compromised, the chain said.
What is a cyber attack?
A CYBER attack is any deliberate attempt to disrupt, damage, or gain unauthorised access to computer systems, networks, or digital devices.
These attacks can target individuals, businesses, or even governments, and their motives can range from financial gain to political disruption.
Cyber attacks can take many forms, employing various techniques to achieve their malicious goals.
Common types of cyber attacks include:
Malware: Malicious software designed to damage or gain control of a system. Examples include viruses, worms, ransomware, and spyware.
Phishing: Deceptive attempts to trick individuals into revealing sensitive information such as usernames, passwords, or credit card details, often through fake emails or websites.
Denial-of-Service (DoS) Attacks: Flooding a network or server with traffic to overwhelm its resources and make it unavailable to legitimate users.
SQL Injection: Exploiting vulnerabilities in website databases to gain unauthorised access to data.
Ransomware: Malware that encrypts a victim's data and demands a ransom for its release.
Social Engineering: Manipulating individuals into performing actions or divulging confidential information.
But members' passwords, credit card details and transaction information were not stolen.
Cyber criminals managed to extract the data from one of the shop's systems, forensic investigations revealed.
The National Crime Agency and National Cyber Security Centre are investigating the breach.
The true scale of the damage only became clear after hackers contacted the BBC with evidence they had stolen customer data.
Customers were assured that the Co-op has implemented measures to 'minimise disruption'.
In a statement the company said: 'We appreciate that our members have placed their trust in our Co-op when providing information to us.
"Protecting the security of our members' and customers' data is a priority, and we are very sorry that this situation has arisen."
What has happened at M&S?
The Coop is not the only retailer to be hit by a cyber attack.
M&S has been experiencing significant disruption after a cyber incident which has affected contactless payments, click-and-collect services and online orders.
The problems started on April 19, when customers reported that they were unable to collect purchases or return items.
On April 21 M&S acknowledged the attack and apologised for the inconvenience.
It engaged cyber security experts and notified the National Cyber Security Centre and the Information Commissioner's Office.
The criminals suspected behind the attack are known as 'Scattered Spider' and have become one of the most prolific cybergangs of the past 18 months.
They specialise in ransomware - a type of attack that is designed to steal information or access in exchange for a sum of money.
They have built a reputation for targeting large, customer-facing organisations through social engineering and identity-focused tactics.
Jamie Akhtar, CEO and Co-founder at CyberSmart, told The Sun: "This is a group known not for sheer technical sophistication, but for their ability to manipulate access, often by impersonating employees or exploiting multi-factor authentication systems."
Despite M&S's efforts to restore systems, disruption continued throughout the week.
The retailer was forced to suspend online and app orders on April 24.
As a result, the company's share price tumbled by 5%.
Shoppers then began to report empty shelves in some stores as the cyber incident affected stock levels.
Customers complained they were unable to get their hands on bananas, fish and Colin the Caterpillar cakes.
When questioned, staff said the disruption was linked to the cyber attack.
Yesterday Jane Wall, the head of customer service at M&S, contacted customers to let them know what the cyber attack means for them.
She confirmed that some personal customer data has been taken but there is no evidence that it has been shared.
This data could include contact details, date of birth and online order history.
But she said it does not include usable card or payment details or account passwords.
She warned customers that they may receive emails, calls or texts fraudulently claiming to be from M&S so customers must be vigilant.
She added: 'We sincerely apologise for any inconvenience caused to you and all of your customers.
'Thank you so much for shopping with us and for your support, we never take it for granted.'
Timeline of cyber attack
Saturday, April 19: Initial reports emerge on social media of problems with contactless payments and click-and-collect services at M&S stores across the UK. Customers experience difficulties collecting online purchases and returning items due to system issues.
Monday, April 21: Problems with contactless payments and click-and-collect persist. M&S officially acknowledges the "cyber incident" in a statement to the London Stock Exchange. CEO Stuart Machin apologises for the disruption and confirms "minor, temporary changes" to store operations. M&S notifies the National Cyber Security Centre (NCSC) and the Information Commissioner's Office (ICO) and engages external cybersecurity experts.
Tuesday, April 22: Disruptions continue. M&S takes further systems offline as part of "proactive management".
Wednesday, April 23: Despite earlier claims of customer-facing systems returning to normal, M&S continues to adjust operations to maintain security. Contactless payments are initially restored, but other services, including click-and-collect, remain affected.
Thursday, April 24: Contactless payments and click-and-collect services are still unavailable. Reports surface suggesting the attackers possibly gained access to data in February.
Friday, April 25: M&S suspends all online and app orders in the UK and Ireland for clothing and food, although customers can still browse products. This decision leads to a 5% drop in M&S's share price.
Monday, April 28: M&S is still unable to process online orders. Around 200 agency workers at the main distribution centre are told to stay home.
Tuesday, April 29: Information suggests that the hacker group Scattered Spider is likely behind the attack. Shoppers spot empty shelves in selected stores.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
The Sun
29 minutes ago
- The Sun
High street chain with 160 stores launches NEW closing down sales after already shutting 38 shops
A HIGH street chain with 160 stores has launched a new closing down sale. Clintons, the card retailer, will close its branch in Hartlepool's Middleton Grange Shopping Centre today, August 16. 1 To shift stock before it closes for good, the chain has launched a closing down sale and has slashed prices by 30%. The move has left shoppers heartbroken, with one sharing: "Shocking, our poor town has gone down the nick." And another described the area as a "ghost town". Meanwhile, a third added: "Well the town won't be worth a light!". It comes as two more stores are set to leave the shopping centre including Holland & Barrett and River Island. The fashion brand will exit in January as part of a major restructuring, which will see at least 33 stores close. As for Clintons, the chain closed 38 stores in the last financial year, which resulted in 300 job losses. The chain has also launched a closing down sale at is branch in Eldon Sqaure shopping centre in Newcastle. But the branch is reportedly set to relocate to another area of the shopping centre in the coming months. The Sun has contacted Clintons for comment. Major card chain with 163 shops launches closing down sales ahead of shutting its doors for good More recently, its Keighley, West Yorkshire store closed its doors on June 14. And another site in Rugby Central is also due to close but an exact date is yet to be confirmed. The chain, which was acquired by Pillarbox Designs also closed a branch in Andover in Hampshire closed in April. Clintons revealed it returned to profit in April this year following a period of distress. The chain made a pre-tax profit of £8million up from £5.3million pre-tax loss it posted in the previous year. A statement from Clintons read: "The company has continued to close loss-making stores and the portfolio of retail stores is now down to approximately 170 stores. "The high street continues to be unpredictable and the company is seeing reduced footfall in the stores year on year. "The company continues to monitor the performance of the existing estate and to close the poor performing stores, which, whilst impacting on turnover, should improve profitability moving forwards." It comes amid a troubling time for UK's retail sector. Just this week, . All outlets will remain across the UK as it mulls "the best possible path forward". Elsewhere, River Island will close 33 stores across the UK as part of a major restructuring plan. The plan is aimed at balancing the retailer's books and writing off its debt as it struggles to stay afloat. Elsewhere, New Look has also closed over a dozen stores this year and its entire estate in Ireland, which consisted of 26 sites. RETAIL PAIN IN 2025 The British Retail Consortium has predicted that the Treasury's hike to employer NICs will cost the retail sector £2.3billion. Research by the British Chambers of Commerce shows that more than half of companies plan to raise prices by early April. A survey of more than 4,800 firms found that 55% expect prices to increase in the next three months, up from 39% in a similar poll conducted in the latter half of 2024. Three-quarters of companies cited the cost of employing people as their primary financial pressure. The Centre for Retail Research (CRR) has also warned that around 17,350 retail sites are expected to shut down this year. It comes on the back of a tough 2024 when 13,000 shops closed their doors for good, already a 28% increase on the previous year. Professor Joshua Bamfield, director of the CRR said: "The results for 2024 show that although the outcomes for store closures overall were not as poor as in either 2020 or 2022, they are still disconcerting, with worse set to come in 2025." Professor Bamfield has also warned of a bleak outlook for 2025, predicting that as many as 202,000 jobs could be lost in the sector. "By increasing both the costs of running stores and the costs on each consumer's household it is highly likely that we will see retail job losses eclipse the height of the pandemic in 2020."
BBC News
an hour ago
- BBC News
Police seize £180k of Andrew Tate's Aston Martin supercar deposit
A total of £180,000 has been seized by Devon and Cornwall Police from Andrew Tate over a deposit he placed on an Aston Martin Magistrates' Court heard on Thursday the controversial British-American influencer paid the deposit for a special-edition Valhalla vehicle in 2021. The cash came from tax evasion and money laundering, the force said, which obtained account freezing and forfeiture orders under the Proceeds of Crime Act. Tate and his brother Tristan did not oppose the sum can be added to the £2.7m of funds seized from the brothers by the force in December 2024 after the same court ruled they failed to pay tax on £21m of revenue from online businesses. Some of the revenue in that case was directly linked by detectives to allegations of human trafficking that the brothers face in Romania. Sarah Clarke KC, on behalf of Devon and Cornwall Police, told the judge on Thursday that the funds used to pay the supercar deposit were the proceeds of tax and VAT evasion and money said funds deposited with Aston Martin originally came from a Coinbase cryptocurrency account, which had held multiple cryptocurrencies purchased with funds derived from the Tate brothers' business tax or VAT had been paid on the funds, she added. Det Supt Jon Bancroft, of Devon and Cornwall Police, said: "This latest judgement follows on from our applications made against the Tate brothers which resulted in a successful ruling in December 2024 and the forfeiture of nearly £2.7m of criminal funds."From the outset we aimed to demonstrate that Andrew and Tristan Tate evaded their tax obligations and laundered money. We succeeded in doing exactly that and we have succeeded again this week."People in Devon and Cornwall will benefit from the money seized and it will be reinvested to help prevent crime, aid victims and vulnerable people, and to boost good causes."He added the outcome showed how the police would continue to "relentlessly pursue all criminal funds without fear or favour".
BBC News
an hour ago
- BBC News
Firm appeals against Sunderland advert screen rejection
Plans for a digital advertising screen, blocked by council planning officers, are set to be decided by a government-appointed planning appeal has been lodged against Sunderland City Council's decision to refuse permission for the site in the Easington Lane Wildstone Estates Limited's plan was linked to the side of a building near a roundabout connecting High Street and Elemore Lane, as part of a nationwide drive to "upgrade traditional advertising hoardings to a modern digital format".However, the council's planning department warned it would be over-dominant visually and pose a distraction for motorists. Wildstone Estates Limited has submitted an appeal to the national Planning Inspectorate, the Local Democracy Reporting Service said, and a planning inspector will be appointed by the secretary of state to rule on the company argues the site is an "established location for advertising" and is in an area which includes a mix of commercial and residential uses. 'Very safe road' It also said refusing the plans on visual amenity grounds was "not justified" and stressed the screen would be controlled by sensors to "adjust the illumination levels" and ensure "no change in impact" compared to a standard "paper and paste display".On public safety matters, it was noted that the site is in an "uncomplicated location which drivers should be able to navigate with ease" and data was cited which, the appellant said, indicated the site is a "very safe stretch of road".Earlier this year, the Planning Inspectorate threw out a similar appeal by Wildstone Estates Limited for a site in Sunderland's Kayll Road, near the Royal Hospital. Follow BBC Sunderland on X, Facebook, Nextdoor and Instagram.
