LOGO

Co-op Data Breach: 6.5 Million Customer Records Stolen

July 16, 2025
Topics:cyberattackcybersecuritydata breachretailScattered SpiderSecurityUnited Kingdom
Co-op Data Breach: 6.5 Million Customer Records Stolen

Co-op Data Breach: Customer Information Compromised

The CEO of Co-op, a major U.K. retail group, revealed on Wednesday that a cyberattack in April led to the theft of personal data belonging to all of its customers.

Shirine Khoury-Haq, Co-op Group’s CEO, informed BBC News that the attackers successfully copied the company’s member database, containing information on 6.5 million individuals.

Details of the Stolen Data

The compromised data encompasses members’ names, addresses, and contact details. Fortunately, Co-op was able to isolate its network before the hackers could deploy ransomware.

The immediate network shutdown caused significant operational disruptions throughout Co-op’s U.K. offices and grocery stores.

Broader Campaign Targeting U.K. Retailers

The Co-op breach was part of a larger, coordinated hacking effort aimed at the U.K. retail sector.

Marks & Spencer also experienced a data theft involving an undetermined quantity of customer information, and Harrods was the target of a failed cyberattack.

Attribution for these attacks has been linked to Scattered Spider, a hacking group primarily composed of young individuals who employ social engineering to gain network access.

Recent Arrests and Ongoing Investigations

In July, U.K. law enforcement officials arrested four suspects believed to be connected to the retail cyberattacks.

  • A 20-year-old woman
  • Two men, aged 19
  • A 17-year-old youth

The arrested individuals face charges including hacking, blackmail, and involvement in an organized crime group.

Expansion to New Sectors

Following the retail attacks, the hackers have reportedly shifted their focus to the airline, transportation, and insurance industries – all sectors that maintain substantial consumer data holdings.

Potential Financial Impact on Co-op

The financial repercussions of the Co-op data breach remain unclear. Reports indicate that the company did not possess cybersecurity insurance at the time of the incident.

This lack of insurance coverage could expose Co-op to substantial financial liabilities as a result of the attack.

#Co-op#data breach#cyberattack#customer data#UK retail#hacking

Related Posts

NHS England Data Breach Confirmed by Tech Provider

NHS England Data Breach Confirmed by Tech Provider

Cisco Zero-Day Exploit: Chinese Hackers Targeting Customers

Cisco Zero-Day Exploit: Chinese Hackers Targeting Customers

Pornhub Hacked: User Data Extorted by Hacking Group

Pornhub Hacked: User Data Extorted by Hacking Group

Google and Apple Release Emergency Security Updates

Google and Apple Release Emergency Security Updates

700credit Data Breach: 5.6 Million Affected

700credit Data Breach: 5.6 Million Affected

Home Depot Data Breach: Internal Systems Exposed for a Year

Home Depot Data Breach: Internal Systems Exposed for a Year