M&S and Co-op cyberattacks expose 'critical vulnerability' that affects us all

Cyberattacks on two top supermarkets have exposed a "critical vulnerability", experts believe, that could leave customers at risk if hacking attempts are not promptly thwarted.

was today forced to shut down part of its IT system following an attempted break-in by , with business services for teams running stores, its legal services division and some stock monitoring systems shut this morning. In a letter sent to staff, representatives of the firm said they had "pre-emptively withdrawn access to some systems for the moment" in order to "keep systems safe". The shock hack came as continues to experience "serious" consequences following an attack on its own systems - with experts warning such incidents could become more common as becomes more advanced.

READ MORE:

Dr Harjinder Singh Lallie, an associate professor at the University of Warwick's Warwick Manufacturing Group, said the attacks have exposed a "critical vulnerability" in an "essential pillar of our national infrastructure" - the food supply chain. He warned the food sector is under "relentless cyber assault" that can "seriously disrupt access to basic necessities".

Dr Lallie told the : “The recent cyber attack on highlights the critical vulnerability of the UK’s food supply chain — an essential pillar of our national infrastructure.

"The food sector is under relentless cyber assault, and attacks like these can seriously disrupt access to basic necessities. The industry must urgently strengthen resilience, not just in preventing breaches, but also in developing robust response mechanisms. This includes real-time detection, rapid containment, and parallel operational systems to minimise disruption for customers.

"Cyber security must now be seen as central to national food security and public confidence." The M&S cyber attack has left shops across the country with empty shelves, and the Co-op hack could have similar consequences, a "well-placed source" told The Guardian today.

The same source said some members of staff would not be able to work from home on Wednesday as Co-Op blocked access to some remote systems.

A Co-op spokesperson said: “We have recently experienced attempts to gain unauthorised access to some of our systems. As a result, we have taken proactive steps to keep our systems safe, which has resulted in a small impact to some of our back office and call centre services.

“We are working hard to reduce any disruption to our services and would like to thank our colleagues, members, partners and suppliers for their understanding during this period."

The spokesperson added it was not asking members or customers to "do anything differently at this point", suggesting officials do not believe customer or member data was accessed. They added the supermarket would "continue to provide updates as necessary" as it works with the National Cyber Security Centre - which is already working with M&S - to resolve the issue.

While the supermarket has not disclosed the method of hack used today, security experts believe DragonForce ransomware was used on M&S. Hackers have been tipped to continue their onslaught on UK , regardless of the method, thanks to the wealth of information they possess.

Dr Jassim Happa, a senior lecturer in information security at Royal Holloway University of London, warned that, if attacks are not caught early enough, customers could be placed at increased risk. He told the Mirror: "As technologies advance, we see an increase in automation and sophistication in attacks.

"These types of incidents are becoming more common as a result. Supermarkets, with their volumes of customer data, present attractive targets for attackers. While immediate shopper risk is often minimal if attacks are caught early, longer-term risks like identity theft or fraud can emerge, particularly if sensitive data in payment or loyalty systems are leaked."

Dr Happa added that hackers won't be limited to retail either, and could also launch sophisticated attacks on sectors that hold much more sensitive data. He said: "Retail is just one of several high-risk sectors — healthcare, logistics, and financial services are also targeted due to the sensitive data they manage."