Sales & General Enquiries: 0330 053 8180   |   Service & Support: 0330 053 8181   |   Email: enquiries@inreachgroup.co.uk

RETAIL CYBER ATTACKS BOOM AFFECTING BIG COMPANIES IN THE UK

In April and May 2025, several major UK retailers experienced significant cyberattacks.

 

In April and May 2025, several major UK retailers experienced significant cyberattacks, primarily attributed to the DragonForce and Scattered Spider ransomware groups. These incidents disrupted operations, compromised customer data, and highlighted vulnerabilities within the retail sector.

As an IT service provider, these headlines are turning our heads and have really got us thinking about the problems and if there was a way they could have been presented. 

RETAILERS AFFECTED BY CYBER ATTACKS

These are some of the attacks that have taken place that you might have heard about or been affected by.

MARKS & SPENCER (M&S)

On April 19, M&S suffered a ransomware attack that disrupted contactless payments and order collections. Personal data, including contact details and order history, was compromised, but payment information remained secure. The attack led to an estimated £60 million in lost profits and over £1 billion in market value loss. Some online orders were suspended. 

CO-OP

On May 2, Co-op disclosed a cyberattack that resulted in unauthorised access to personal data of current and former members, including names, contact details, and dates of birth. Financial data and passwords were not affected. The breach prompted the shutdown of certain IT systems to prevent further damage. 

HARRODS

Harrods reported an attempted cyberattack on May 1, leading to restricted internet access at some sites as a precautionary measure. While no breach was confirmed, the incident raised concerns about potential vulnerabilities.

PETER GREEN CHILLED

A supplier to major UK supermarkets, including Aldi, Tesco, and Sainsbury’s, was targeted by a cyberattack that disrupted the supply chain, affecting food and goods distribution across the country. This affected the operations of these major retailers. 

PREVENTION MEASURES FOR CYBER ATTACKS AND DATA PROTECTION

Based on the data that was exposed and corrupted, personal data wasn’t affected in most cases. This suggests that all these retailers have invested in highly secure cyber security when it comes to GDPR. However, because of the disruption in supply and transactions, these incidents underscore the importance of robust cybersecurity practices.

We’re not saying that the reason these cyber-attacks happened was because of the following procedures not being met, nor are we saying that conducting these guarantees your safety – but – they could minimise your risk of attack if this is something you are concerned about.

  • Regular System Audits: Make sure you are conducting frequent security assessments to identify and address vulnerabilities.
  • Employee Training: Educate your staff to help them recognise phishing attempts and follow secure practices.
  • Data Encryption: Make sure you’re implementing a strong encryption protocol to protect sensitive information.
  • Incident Response Plans: Develop and test response strategies to quickly address and mitigate attacks.

If you are looking to enhance your cyber security, contact iNREACH. We have  a vast amount of knowledge and experience and can help build a security package for you

THE IMPORTANCE OF INVESTING IN CYBERSECURITY

In light of these attacks, it’s more important than ever to ensure you have a robust security system for your business. There are several reasons why you should be investing or upgrading today.

Financial Protection

Cyber security plans can prevent costly breaches that can lead to significant financial losses. They also include a data recovery and business continuity plan so you can continue to function if the worst should happen.

Reputation Management

It’s important that you maintain your customer trust by safeguarding personal and financial data. It’s not unusual for customers to find a new provider if they think their data is at risk.

Regulatory Compliance

You should ensure you adhere to legal requirements. ISO certifications could be a good way to do this. 

Operational Continuity

If you do experience an attack, being able to remain functional is so important. It could be the difference between staying in business long-term or losing a lot of clients.

By prioritising cybersecurity, your business will reduce the risk of cyberattacks and their potentially devastating consequences.

CYBER SECURITY WITH iNREACH

At iNREACH, we are an IT provider for businesses all over the UK. As part of our IT service solutions, we can provide a full cyber security package and plan to reduce the risk of you falling victim to an attack whilst implementing a strategy for remaining operational if anything does come your way.

For more information or to discuss your requirements, please contact our team.

DISCOVER MORE

iNREACH GROUP | October 7, 2025

GIVING BACK: iNREACH’S MID YEAR 2025 IMPACT REPORT

AV | September 30, 2025

MEETING ROOM TECHNOLOGY – MAKE A STATEMENT IN SECONDS

IT | September 23, 2025

PROTECT YOUR FIRM FROM CYBER ATTACKS

iNREACH GROUP | September 17, 2025

WE FIGHT WITH WILL MACINTYRE

CONTACT US

For sales & general enquiries please email enquiries@inreachgroup.co.uk, call 0330 053 8180 or submit your details below:

Leave your name and telephone number to request a call back