Big news from the Co-op Group this week—and not the good kind. CEO Shirine Khoury-Haq has confirmed that all 6.5 million of the Co-op’s members had their personal data stolen in a recent cyberattack.
The Scoop
So, what kind of data are we talking about? Hackers obtained full names, home addresses, emails, phone numbers, and dates of birth. The silver lining? No financial data or purchase history was compromised. Still, it’s a major privacy hit.
The breach has been linked to a ransomware gang known as Scattered Spider, which reportedly used a malware strain called DragonForce to carry out the attack. The group originally claimed they’d nabbed data from 20 million Co-op customers. Still, the CEO clarified that it was 6.5 million people—current and former members of the Co-op Group.
In response to the attack, law enforcement has been moving fast. Just last week, the National Crime Agency (NCA) arrested four suspects tied to the cyberattacks, not just on Co-op, but also on Marks & Spencer and Harrods. The suspects include a 17-year-old and a 19-year-old from the West Midlands, another 19-year-old from London, and a 20-year-old woman from Staffordshire.
They’re now facing some serious charges: blackmail, money laundering, cybercrime offences, and being part of a criminal organisation.
Conclusion
“Today’s arrests are a significant step in that investigation,” said Paul Foster, Deputy Director of the NCA’s National Cyber Crime Unit. “But our work continues, alongside partners in the UK and overseas, to ensure those responsible are identified and brought to justice.”
So, it’s a good time to keep an eye on your personal accounts and consider some extra security precautions. We always think that we’ll never be the ones to experience the fallout of a cyber attack, but neither did the victims of this one.
We hope you’ve liked this blog. Stay tuned for more awareness blogs like this. Stay safe!
