A major cyberattack on Co-op Food, one of the UK’s largest grocery chains, has resulted in the theft of a significant amount of customer and employee data. While the company initially downplayed the incident, hackers have since contacted the BBC, providing evidence of the breach and claiming extortion.
Hackers Reveal Extent of Data Theft
Co-op initially reported a limited data breach. However, a hacker group calling themselves “DragonForce” contacted the BBC, presenting screenshots of a Microsoft Teams conversation. These screenshots allegedly show the hackers boasting about stealing “huge amounts” of customer and employee data, including customer databases and Co-op member card information. The hackers explicitly stated they were extorting the company.
Impact of the Attack
The cyberattack has severely impacted Co-op’s operations. The company has been forced to restrict grocery deliveries to essential items only due to damage to its electronic data interchange (EDI) system.
Government Response and Warning
The UK government has responded to the incident, urging businesses to prioritize cybersecurity. Pat McFadden, the Chancellor of the Duchy of Lancaster, stressed the need for businesses to treat cybersecurity as a top priority, comparing neglecting digital security to leaving a car or house unlocked. He highlighted the disruption caused by such attacks on everyday life.