The Co-operative Group, one of the U.K.’s largest retail chains, has taken several IT systems offline following what it described as an attempted Co-op cyberattack. The move was made to protect the company’s infrastructure after suspicious activity was detected.
While the company has not confirmed if hackers successfully breached its systems, it said operations in back office and call center functions have been affected. However, Co-op stores continue to operate normally.
Systems Taken Offline to Prevent Further Risk
Mark Carrington, a spokesperson for The Co-op, confirmed that the company “recently experienced attempts” by hackers to access some of its systems. In response, it took “proactive steps” to shut down parts of its IT network to contain the situation.
Despite the disruption, customers shopping at the more than 2,500 Co-op stores across the U.K. won’t notice much change. “We are not asking customers to do anything differently,” Carrington stated.
The Co-op did not disclose what kind of cyberattack was attempted—whether it involved ransomware, phishing, or another form of intrusion. The retailer also declined to say if it had been contacted by any threat group, a common step in ransomware attacks where extortion demands are made.
It remains unclear whether sensitive data was accessed or stolen. Additionally, Co-op has not confirmed if it reported the incident to the Information Commissioner’s Office (ICO), the U.K. regulator that handles data breach disclosures. Under U.K. data protection laws, companies are required to report breaches that may impact user data.
However, The Co-op did confirm that it is working with the National Cyber Security Centre (NCSC), which typically supports organizations facing cybersecurity threats.
Recent Surge in Attacks on U.K. Retailers
The Co-op cyberattack follows a similar incident involving another major U.K. retailer. Just days ago, Marks & Spencer acknowledged a cyberattack that disrupted its operations and left customers unable to collect orders. Marks & Spencer also notified the ICO, suggesting that a data breach may have occurred.
The ongoing disruptions at Marks & Spencer have entered a second week, showing how long recovery can take after a serious cyber incident. With Co-op now affected, there is growing concern about the increasing frequency of attacks on British retailers.
These incidents highlight the rising threat landscape facing the retail sector. Hackers often target large companies that handle customer data and manage complex supply chains. Any disruption in these systems can impact thousands of customers and employees.
Cybersecurity experts say retailers need to be more vigilant. Regular system updates, employee training, and strong access controls are all essential to prevent breaches.
For now, The Co-op is focused on restoring its back-end services and maintaining in-store operations. It has not provided a timeline for when systems will return to normal.
As investigations continue, both customers and cybersecurity watchers will be keeping a close eye on how the situation unfolds—and whether more U.K. retailers may be at risk in the near future.
