Overview

• Co-op has restored its stock ordering and payment systems, with improved stock availability expected in stores and online this weekend.
• Marks & Spencer remains unable to process online orders, with in-store stock availability gradually improving but full recovery expected to take weeks.
• Both retailers confirmed data breaches, with customer and staff personal details stolen, though no passwords or payment information were compromised.
• The attacks, attributed to hacking groups DragonForce and Scattered Spider, highlight vulnerabilities in outdated IT systems and the rise of ransomware-as-a-service tools.
• Experts emphasize the urgent need for stronger cybersecurity measures across the retail sector, citing risks from AI-enhanced phishing and underinvestment in IT security.