In response to a series of devastating cyber attacks on major UK retailers, including M&S, Co-op, and Harrods, the National Cyber Security Centre (NCSC) has issued updated guidance to help organisations bolster their defences. These recent incidents have highlighted the urgent need for robust cyber security measures to protect against increasingly sophisticated threats.
The Wave of Attacks: A Timeline
The recent wave of cyber attacks began with M&S, which suffered a ransomware attack. The threat actors used social engineering tactics to gain access to systems which has disrupted online orders, contactless payments, and Click & Collect services.
Shortly after, Co-op reported a breach. Initially downplaying the incident, they later confirmed that a significant amount of customer data was stolen. VPN access was restricted as a precaution, and while the ransomware wasn’t successfully deployed, the attack was stopped at an early stage.
On 1st May, Harrods revealed an attempted intrusion, prompting internal internet restrictions. Fortunately, no data breach has been confirmed.
These are 3 big names, but we should remember that there are thousands of cyber attacks taking place every day, from small to large organisations in any industry. These high profile cyber attacks pop up in the news and everyone is shocked at how a large organisation can be compromised to such an extent. It really shows how important your cyber defences should be.
Common Tactics: Social Engineering
All three incidents involved social engineering attacks, where threat actors impersonated employees to trick IT help desks into resetting passwords.
NCSC's Updated Guidance
Following these attacks, the NCSC has advised organisations to implement several key measures to reduce their risk of cyber attacks:
- Multi-Factor Authentication (MFA): Adding an extra layer of security by requiring multiple forms of verification before granting access.
- Monitoring for Suspicious Activity: Keeping a close eye on your systems, especially in cloud environments, to detect and respond to unauthorised activity.
- Regularly Reviewing Password Reset Processes: Ensuring that your procedures for resetting passwords are secure and not easily exploited by social engineering tactics.
These are simple measure to implement, but critical in building layers of defence.
Why Should You Care?
Cyber attacks are not just a problem for large retailers; they can affect any organisation. According to the Cyber Security Breaches Survey 2025, 43% of businesses reported experiencing a cyber security breach or attack in the last 12 months, with phishing being the most common type of attack. This highlights the importance of maintaining good cyber hygiene and being vigilant against potential threats.
The Likelihood…
- Prevalence of Cyber Attacks: 43% of businesses experienced a cyber security breach or attack in the last 12 months.
- Financial Impact: The average cost of the most disruptive breach for SMEs was £1,600, with costs rising significantly if the breach had a material outcome.
Conclusion
The recent cyber attacks on major UK retailers serve as a stark reminder of the importance of robust cyber security measures. By following the NCSC's updated guidance and adopting a multi-layered approach to security, you can better protect your organisation from similar threats.
Is your technology holding you back or driving you forward? At Sharp, we believe in providing tailored, flexible, and intelligent solutions that empower you to stay secure and thrive in today's digital landscape.
