In recent months, the cyber security landscape has been rocked by a series of high-profile attacks on major retailers, M&S, the Co-op, and Harrods. These incidents serve as stark reminders that cyberattacks are on the rise and pose a significant threat to businesses worldwide.
Recent Cyberattacks: M&S, Co-op, and Harrods
In April 2025, M&S was hit by a ransomware attack carried out by the group Scattered Spider. The attackers used sophisticated social engineering tactics, including phishing and SIM-swapping, to breach M&S’s systems, encrypt critical data, and demand a ransom. This led to major disruptions, including the suspension of online orders and issues with in-store services.
Around the same time, the Co-op faced its own cyberattack exposing personal data of current and past members. Hackers exploited vulnerabilities to access the Co-op’s systems, and in response some of their systems had to be shut down to contain the damage.
Harrods was also targeted by cyber criminals in May 2025, forcing them to restrict internet access at its sites to protect its systems. Despite the attack, Harrods assured customers that its operations continue as normal.
The Damage Caused by Ransomware and Data Breaches
Ransomware and data breaches can have devastating consequences for businesses. Financial losses from downtime and regulatory fines are just the tip of the iceberg. The reputational damage can be even more severe, eroding customer trust and potentially leading to long-term business decline. As cyber security expert Stephane Nappo aptly put it, “It takes 20 years to build a reputation and a few minutes of cyber-incident to ruin it”.
Why Cyberattacks Are on the Rise?
Several factors contribute to the increasing frequency and sophistication of cyberattacks. One major driver is the use of artificial intelligence (AI) by cybercriminals. AI-powered attacks can automate and enhance various phases of a cyberattack, making them more efficient and harder to detect. AI-driven phishing campaigns, for example, can create hyper-personalised attacks that are difficult to spot.
The Evolution of Cyberattacks and Defence Tools
Cyberattacks have evolved significantly over the years. Early threats like viruses and worms have given way to advanced persistent threats (APTs) and AI-driven attacks. As cybercriminals have become more sophisticated, so too have the tools designed to combat them. Modern cyber security solutions leverage AI and machine learning to detect and respond to threats in real-time.
Can These Attacks Be Prevented?
While it's challenging to say with certainty that any cyberattack could be completely avoided, there are several measures that can mitigate the impact or even prevent a breach.
Key Preventative Measures
- Enhanced Employee Training: Many cyberattacks, including those on M&S and the Co-op, began with social engineering tactics like phishing. Regular and comprehensive training for employees on how to recognise and respond to phishing attempts and other suspicious activities can significantly reduce the risk of such attacks.
- Robust Multi-Factor Authentication (MFA): Implementing and enforcing strong MFA standards can prevent unauthorised access even if credentials are compromised. This is particularly important given the use of SIM-swapping and repeated MFA prompts in the M&S attack.
- Regular Security Audits and Vulnerability Assessments: Conducting frequent security audits and vulnerability assessments can help identify and address potential weaknesses before they are exploited. This proactive approach is crucial for maintaining a strong security posture.
- Advanced Threat Detection and Response Systems: Utilising AI-powered threat detection and response systems can help identify and mitigate threats in real-time. These systems can analyse patterns and detect anomalies that might indicate a cyberattack, allowing for quicker responses.
- Supply Chain Security: Ensuring that all third-party vendors and partners adhere to stringent cyber security standards is essential. A weak link in the supply chain can be an entry point for attackers.
- Incident Response Planning: Having a well-defined incident response plan can help organisations respond quickly and effectively to cyberattacks. This includes regular drills and updates to the plan based on the evolving threats.
However, this is not to say that M&S, the Co-op, and Harrods didn’t have these security measures in place. The likelihood is they did, and the outcome if they didn’t could have been even worse. Dr. Richard Horne, National Cyber Security Centre (NCSC) CEO, said: “These incidents should act as a wake-up call to all organisations. I urge leaders to follow the advice on the NCSC website to ensure they have appropriate measures in place to help prevent attacks and respond and recover effectively”.
Ian Oswell, a Business Development Director at FLR Spectron, also emphasised: “The spate of attacks on M&S, Co-op, and Harrods highlights that security should never be treated as an optional extra but as an integral part of business infrastructure. With AI-driven threats increasing, no organisation can protect against every risk, but a clear plan and trained users can limit damage if the worst happens”.
Who Is at Risk?
Our article has highlighted 3 retail giants recently hit by a cyberattack. This being the case you could be forgiven for thinking that cyberattacks won’t hit the small businesses. Sadly, this just isn’t the true. Yes, you’ve heard about M&S, Co-op and Harrods in the news because, well, they are retail giants. However, many businesses are hit by a cyberattack every day, and you probably won’t hear about any of them. As of 10 April 2025, information published on the government website reveals that in the UK, 4 out of every 10 businesses reported having experienced a cyberattack or breach in the last 12 months, equating to approximately 612,000 in the past year.
In fact, small to medium sized businesses are increasingly becoming targets for cybercriminals. Why? They are often perceived as more vulnerable, and resources to put toward cyber security may be limited. Additionally, even small businesses hold valuable personal, financial and intellectual data, which can be exploited. It may also be that a small business is within the supply chain of a larger organisation, making the small business a gateway for attackers. Cybercriminals may also see smaller businesses as quick payouts being more likely to pay a ransom to avoid downtime.
Building a Cyber Security Culture
Keeping a business secure is a collective effort. It involves creating an environment where every employee understands the importance of cybersecurity and actively participates in maintaining it. Here’s how to build that mindset within your business:
- Lead by Example: When leaders take security seriously, others follow.
- Train Often: Keep employees updated with simple, clear training. Make it relevant to their role.
- Set Clear Rules: Write down what people should do to stay safe. Make it easy to report problems.
- Talk About It: Share updates and reminders. Celebrate when people do the right thing.
- Encourage Awareness: Let staff know it’s okay to question strange requests—even if those requests come from high up.
- Practice Regularly: Run fake phishing tests and emergency drills to stay sharp.
- Keep Improving: Ask for feedback. Update your training as threats evolve.
How We Can Help
As a Managed Service Provider (MSP), we offer a complete range of cyber security solutions tailored to your business needs. Our services include continuous monitoring, threat detection, and employee training to ensure your organisation is protected against the latest threats. We stay ahead of emerging cyber threats, providing proactive measures to keep your business secure.
Don't wait for a cyberattack to happen. Contact us today to learn how we can help protect your business from the growing threat of cyberattacks.