The government’s Cyber Security Breaches Survey 2025 in April found that 74% of large businesses and 67% of medium businesses in the UK reported experiencing a cybersecurity breach or attack in the previous 12 months.
What Does it Mean for Me?
Cybersecurity attacks on businesses don’t just affect the businesses themselves… they also have an impact on their customers.
Breaches could mean that your personal and financial information could be exposed, leaving you vulnerable to things like financial loss and identity theft.
Co-op and M&S
Marks and Spencer (M&S) and The Co-operative Group (Co-op) were hacked in April this year, leading to some personal customer data being taken.
M&S have confirmed that this data could include contact details, date of birth, and online order history. Fortunately, they have stated that the data does not include any useable card or payment details or any account passwords.
Co-op have stated that the data they believe was extracted includes Co-op Group members’ personal data, such as names, email addresses, home addresses, phone numbers, and dates of births. However, they said they did not believe passwords, bank or credit card details, transactions, or information relating to individuals’ products or services within the Co-op group had been accessed.
M&S and Co-op aren’t the only major retailers affected, with brands like Cartier, Louis Vuitton, Harrods, and more, also facing cyberattacks. The National Crime Agency have made 4 arrests in relation to the attacks on M&S, Co-op and Harrods, stating:
“Today’s arrests are a significant step in that investigation but our work continues, alongside partners in the UK and overseas, to ensure those responsible are identified and brought to justice.
“Cyber attacks can be hugely disruptive for businesses and I’d like to thank M&S, Co-op and Harrods for their support to our investigations. Hopefully this signals to future victims the importance of seeking support and engaging with law enforcement as part of the reporting process. The NCA and policing are here to help.”
What Can I Do to Stay Safe?
To stay safe online, the National Cyber Security Centre recommends:
- Using a strong, unique password for your email address and online accounts. We have more information on when you should change your password and how to make a strong password here
- Installing the latest software and app updates to ensure you have the most up-t-date security updates
- Backing up your most important data by uploading them to an external hard drive or cloud-based storage
- Using 2-step verification for your online accounts
- Using a password manager to help you have different passwords for each account and keep track of them
- Using 3 random words to help create a password that’s hard to crack