The Co-op has confirmed it’s shut down several back-office and communication systems after uncovering attempts to hack into its IT infrastructure. This move comes right after a similar incident with Marks and Spencer, which is suspected to be linked to the cyber crime group Scattered Spider. While there’s no established connection between the two attacks, the timing raises alarms.
A spokesperson for Co-op explained that they’ve taken proactive measures to protect their systems. They noted this has led to some minor disruptions in back-office and call center services, but all stores, including quick commerce operations and funeral homes, are still running as usual. They thanked everyone for their understanding and assured that customers don’t need to change their behavior at this stage.
Shutting down affected systems is a crucial step in dealing with cyber incidents. By isolating the compromised parts, it makes it harder for attackers to spread within the network, preventing further damage like data theft or encryption.
Co-op’s decision has drawn praise from security experts. Dray Agha from Huntress highlighted that this swift action shows a strong, proactive response to the situation. He pointed out that while disruptive, it’s necessary to contain threats early on.
Agha noted that the trend shows attackers increasingly targeting retailers, with initial access often leading to data theft or ransomware. With two major supermarkets dealing with significant cyber disruptions, Nick Dyer from Arctic Wolf emphasized the need for other retailers to learn from these incidents to bolster their own cybersecurity plans. He warned that cyber criminals can quickly change tactics, so being prepared can greatly help mitigate future impacts.