Skip to site menu Skip to page content

Daily Newsletter

02 May 2025

Daily Newsletter

02 May 2025

Co-op disables parts of IT systems after attempted hack

Co-op is continuing normal operation across stores, including rapid home deliveries.

Jangoulun Singsit May 01 2025

Co-op operates more than 2,000 stores and other legal and financial businesses. Credit: Richard M Lee/Shutterstock.

Co-op has initiated a partial shutdown of its IT infrastructure in response to a detected cyber-attack attempt, in late April 2025, just days after a major hack at retailer Marks & Spencer (M&S).

In a letter sent to employees, to which The Guardian had access, the organisation stated it had taken measures to secure its systems and consequently restricted access to certain systems temporarily.

Co-op operates a network of 2,000 grocery stores, funeral parlours and ventures in legal and financial services.

The company has halted some business services for store management teams and the legal services division. It is understood that its stock monitoring system is among the affected services.

An informed source suggested that if the issue is not resolved promptly, there could be noticeable gaps on shelves in some regions.

The Guardian reported that from 30 April 2025, some staff members would be unable to work remotely due to blocked access to systems.

Despite these challenges, the Co-op has confirmed that all stores, including rapid delivery services and funeral homes, are operating normally.

The chain has given reassurances that there was no immediate action required from members or customers, suggesting confidence that customer data remained uncompromised. Updates will be provided as deemed necessary.

A Co-op spokesperson was quoted by the publication: "We have recently experienced attempts to gain unauthorised access to some of our systems. As a result, we have taken proactive steps to keep our systems safe, which has resulted in a small impact to some of our back office and call centre services. We are working hard to reduce any disruption to our services and would like to thank our colleagues, members, partners and suppliers for their understanding during this period."

Fellow retailer M&S temporarily suspended all online orders following a cyber-attack which began on Tuesday, 22 April 2025. The retailer instructed agency staff at its central England distribution centre not to report for duty on 28 April after halting online orders due to the cyber event.

The National Cyber Security Centre has acknowledged its collaboration with Co-op in managing the cyber incident and is also assisting M&S to understand both occurrences fully.

The possibility of connections between the two incidents is also under scrutiny.

Uncover your next opportunity with expert reports

Steer your business strategy with key data and insights from our latest market research reports and company profiles. Not ready to buy? Start small by downloading a sample report first.

Browse reports

Newsletters by sectors

Just Style open-new-tab

Packaging Gateway open-new-tab

Just Drinks open-new-tab

View more newsletters

Sign up to the newsletter

 

Visit our Privacy Policy for more information about our services, how we may use, process and share your personal data, including information of your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
close

Sign up to the newsletter: In Brief

Visit our Privacy Policy for more information about our services, how we may use, process and share your personal data, including information of your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.

Thank you for subscribing

View all newsletters from across the GlobalData Media network.

close