Cyber attacks are continuing to hit the UK high street – and hard. In recent weeks, Marks & Spencer, the Co-op Group, and luxury retailer Harrods have all been targeted by cyber criminals. It’s a powerful reminder that no organisation is immune, regardless of size, reputation, or industry.
These high-profile breaches send a clear message to all businesses: if it can happen to them, it can happen to you. Attacks have disrupted everything from internet access and online orders to internal operations, often through malicious software designed to steal personal details or lock critical systems.
What happened?
Marks & Spencer: Major disruption from a suspected ransomware attack
M&S experienced the most severe impact. Multiple systems had to be taken offline in what is widely believed to be a ransomware attack. Though the company hasn’t confirmed full details, the fallout has been significant:
- Website and app orders were paused for more than a week
- Click-and-collect and contactless payments were disrupted
- Stock availability in some stores took a hit
- The company’s market value dropped by millions
In a subsequent update, M&S confirmed that personal data was compromised in the breach. The stolen contact information could include names, dates of birth, telephone numbers, home addresses, household information, email addresses, and online order histories.
Cybercrime group Scattered Spider is suspected to be behind the attack, reportedly deploying a ransomware strain called DragonForce. Known for combining traditional hacking with social engineering tactics – including phishing and MFA fatigue attacks – this group is adept at bypassing even sophisticated defences.
The incident is now under investigation by the Met Police Cyber Crime Unit, National Cyber Security Centre, and the National Crime Agency.
Co-op: Data breach more serious than first claimed
An incident that was initially described as a minor attempted breach has now been confirmed to be far more serious. Although Co-op stores and funeral services continued operating as normal, several back-office systems and call centre operations were disrupted for a period of time.
More concerning is the confirmation that hackers were able to access and extract personal data from one of the company’s systems. This included the names and contact details of a significant number of current and former members.
The Co-op has said that no passwords, financial details or transaction data were involved, but the breach still raises serious questions about data security and transparency.
This event serves as a reminder of how quickly a cyber incident can escalate and how important it is for organisations to stay ahead of potential threats.
Harrods: Data breach hits loyalty members
More recently, luxury department store Harrods confirmed a cyber incident that exposed the personal information of members in its Harrods Rewards loyalty scheme. The breach was traced back to a third-party service provider, with attackers gaining access through a supply chain vulnerability.
While no payment details were exposed, data such as names, contact details, and membership numbers were compromised – a concerning development given the value of personal information to cyber criminals.
Harrods has notified affected members and is working with cyber security experts to strengthen its defences. This incident highlights the risks associated with third-party vendors and supply chain vulnerabilities.
Why it matters for businesses of every size
It’s easy to assume that attackers only go after big brands – but in reality, smaller and mid-sized businesses are often prime targets. Why? Because they’re perceived as easier to breach and more vulnerable to attempts to gain unauthorised access.
Unlike M&S or Harrods, many growing businesses don’t have large in-house security teams or dedicated incident response plans. That means the potential for operational disruption, reputational damage, exposure of customer data, and financial loss – including lost sales from downtime or restricted internet access – is even greater.
As other retailers continue to be targeted, it’s clear that cyber resilience is no longer optional – it’s essential.
If an attack occurs, would you have the capability to alert your security team immediately?
Ask yourself:
- Could you detect a threat before it spreads?
- Would you know how to respond if your systems were suddenly encrypted?
- Are your suppliers and third parties putting you at risk?
- How quickly could you recover?
Zenzero can help
We work with businesses of all sizes to protect what matters most – your data, your systems, and your people. From proactive steps like continuous monitoring and staff training, to in-depth threat analysis, incident response, and supply chain risk assessments, we help you stay one step ahead of cyber threats.
Our cyber security team constantly monitors the evolving threat landscape, helping you understand where the real risks lie – not just in theory, but based on real-world reported incidents affecting businesses like yours. With our tailored cyber security solutions, you gain the insight and protection needed to stay ahead of threats.
If you’re unsure how secure your business really is, let’s talk. We’re here to help you identify vulnerabilities, build resilience, and respond confidently if the worst should happen.
Don’t wait for a headline to make security a priority.
Get in touch with us today for a no-obligation conversation about protecting your business.