合作社集团首次披露了四月份遭受网络攻击造成的财务损失规模，估计总成本达2.06亿英镑。该零售、保险、法律和殡葬服务公司表示，攻击导致运营中断，超市货架空置数周，收入下降1.6%。英国网络监控中心将攻击归咎于Scattered Spider黑客组织，并估计总经济损失在2.7亿至4亿英镑之间。合作社未购买网络保险，其主席迪比·怀特表示，尽管面临挑战，但公司仍将努力恢复并加强。

📈 合作社集团因四月份遭受的网络攻击，首次披露了高达2.06亿英镑的财务损失。该损失包括运营中断、收入下降以及顾客流失等直接和间接成本，凸显了网络攻击对大型企业财务健康的严重威胁。

🛒 攻击导致合作社2300家门店货架空置数周，运营系统关闭，直接影响了其零售业务，尤其是超市部门的收入，从2024年上半年5.603亿英镑下降至2025年同期的5.484亿英镑。

🕵️‍♂️ 英国网络监控中心将此次攻击归咎于Scattered Spider黑客组织，并估计总经济损失在2.7亿至4亿英镑之间。这一数字不仅反映了直接财务损失，还包括对合作社品牌声誉和客户信任的长期损害。

🛡️ 合作社未购买网络保险，这一决定加剧了其损失。攻击期间，合作社的数据安全措施未能阻止黑客入侵，导致超过650万会员客户的数据被盗，进一步凸显了数据安全防护的重要性。

🌍 攻击显示了网络犯罪对供应链和社会的广泛影响，尤其是在偏远地区，合作社是唯一的实体杂货连锁店。此次事件强调了零售业在‘即时库存系统’和‘高度依赖IT订单流程’方面的脆弱性，以及从手动流程恢复的困难。

<p>The Co-op has disclosed for the first time the scale of the financial damage it suffered due to April’s cyber attack.</p> <p>The retail, insurance, legal and funeral care Co-op Group estimates total costs of £206m as a direct consequence of the attack.</p> <p>In its <a href="https://www.co-operative.coop/media/news-releases/co-ops-underlying-strength-allows-the-group-to-navigate-external-pressures"&gt;half-year financial statement</a>, it said: “When Co-op was targeted by a sophisticated cyber attack, we acted quickly and decisively to temporarily shut down a number of systems to contain the threat. This led to operational disruption.”</p><div class="ad-wrapper ad-embedded"> <div id="halfpage" class="ad ad-hp"> <script>GPT.display('halfpage')</script> </div> <div id="mu-1" class="ad ad-mu"> <script>GPT.display('mu-1')</script> </div> </div> <p>Debbie White, chair of the Co-op, added: “The first half of 2025 brought significant challenges, most notably from a malicious cyber attack. Our balance sheet strength and the magnificent response of our 53,000 colleagues enabled us to maintain vital services for our members and their communities. We must now build our Co-op back better and stronger to meet the challenges and opportunities that lie ahead.”</p> <p>In its results, the Co-op said its half-year revenues of £5.5bn were 2.1% lower than for the same period of 2024, but offered the opinion that the figure would have been 1.5% higher had it not been hit by a cyber attack.</p> <p>As with Jaguar Land Rover, which has seen its <a href="https://www.computerweekly.com/news/366631527/Jaguar-Land-Rover-extends-cyber-attack-induced-shutdown-to-October"&gt;production lines fall silent following a cyber attack on 31 August</a>, the Co-op <a target="_blank" href="https://www.ft.com/content/82d4d4f8-1671-4830-9949-75304cf10e07" rel="noopener">has been reported</a>&nbsp;by the <em>Financial Times</em> not to have had cyber insurance.</p> <p>The <a href="https://assets.ctfassets.net/5ywmq66472jr/22o6zp3vwO9CawfpAXwPJT/4d211c28843f3a7f25e85c8cf82a6b81/Co-op_Interim_Results_2025.pdf"&gt;Co-op results statement</a> reveals a 1.6% drop in revenue from its grocery shops, from £5.603m in the first half of 2024 to £5.484m in the same half-year period in 2025. Shelves were empty for weeks in its 2,300 stores as a result of the attack, <a href="https://www.computerweekly.com/news/366623455/Co-op-shuts-off-IT-systems-to-contain-cyber-attack"&gt;during which it switched off back-office and communications systems</a>.</p> <p>The attack, which took place at the end of April, came hard on the heels of a similar <a href="https://www.computerweekly.com/news/366622847/Cyber-attack-downs-systems-at-Marks-Spencer"&gt;attack on Marks and Spencer</a>.</p> <p>The UK’s&nbsp;<a target="_blank" href="https://cybermonitoringcentre.com/" rel="noopener"></a>Cyber Monitoring Centre (CMC) identified the Scattered Spider hacking group as the source of both attacks, and <a href="https://www.computerweekly.com/news/366626336/MS-Co-op-attacks-a-Category-2-cyber-hurricane-say-UK-experts"&gt;estimated the economic damage from the attacks</a> to be between £270m and £400m, calculated from public and commercial data sources, including its own modelling, and another figure of around £300m stated by M&amp;S in May during its annual results call.</p> <p>Based on statistics drawn from transactional data platform&nbsp;<a target="_blank" href="https://www.fabledata.com/" rel="noopener">Fable Data</a>, the CMC reported daily spend at the Co-op dropped by 11% during the first 30 days of the incident. It also said that because the Co-op is often the only bricks and mortar grocery chain in more isolated and remote parts of the country – for example, in the Highlands and Islands of Scotland – the incident demonstrated the broader social impacts of such cyber attacks.</p> <p>“The event underscores retail sector vulnerabilities tied to just-in-time stock systems, lack of back-end storage and high dependency on IT-driven order flows. When systems fail, it is challenging to revert to manual processes,” said the CMC.</p> <p>After initially playing down the significance of the attack, the Co-op admitted the <a href="https://www.computerweekly.com/news/366627833/Co-op-chief-incredibly-sorry-for-theft-of-65m-members-data"&gt;data of all 6.5 million of its member customers had been stolen</a>.</p> <p>Co-op Group chief executive Shirine Khoury-Haq said, during an appearance on&nbsp;<a target="_blank" href="https://www.bbc.co.uk/iplayer/episode/m002fx94/breakfast-16072025" rel="noopener"><i>BBC Breakfast</i></a> over the summer: “I am incredibly sorry. It’s awful to have happened. That’s why we feel like we have to do something positive now.”</p> <p>At the time, she expressed relief that <a href="https://www.computerweekly.com/news/366627353/Four-arrested-in-MS-cyber-attack-investigation"&gt;Scattered Spider had been caught</a> and evicted from the retailer’s systems before the hacking group could deploy ransomware.</p> <p>Stephen McPartland, author of the&nbsp;<a target="_blank" href="https://url.us.m.mimecastprotect.com/s/VVsWC73nA5IVDJYR1H8fBtoblL0?domain=urldefense.com" rel="noopener">McPartland Review</a>&nbsp;into cyber security and former Minister of State for Security, said, to Computer Weekly: “The Co-op's staggering losses show that even a multi-billion pound business lacks the requisite defences to withstand the increasingly sophisticated nature of cyber crime. Sadly, many smaller businesses in the Co-op's supply chain simply do not have the cashflow to survive such shocks.</p> <p>“Cyber resilience must now be treated as a fundamental part of the UK's economic infrastructure – protecting jobs, communities, and Britain’s competitiveness.<br>“Boards must embrace cyber awareness, equipping their organisations with the tools and strategies needed to fend off attacks.”</p> <div class="extra-info"> <div class="extra-info-inner"> <h3 class="splash-heading">Read more about cyber attacks on UK retailers</h3> <ul class="default-list"> <li>Cyber incident at Co-op <a href="https://www.computerweekly.com/news/366623455/Co-op-shuts-off-IT-systems-to-contain-cyber-attack"&gt;forces the retailer to pull the plug on some of its IT systems</a> as it works to contain the attack.</li> <li>UK’s Cyber Monitoring Centre publishes its first in-depth assessment of a major incident, reflecting on the <a href="https://www.computerweekly.com/news/366626336/MS-Co-op-attacks-a-Category-2-cyber-hurricane-say-UK-experts"&gt;impact of and lessons learned from Scattered Spider attacks on M&amp;S and Co-op</a>.</li> <li><a href="https://www.computerweekly.com/news/366623311/Harrods-becomes-latest-UK-retailer-to-fall-victim-to-cyber-attack"&gt;Harrods confirms it is the latest UK retailer to experience a cyber attack</a>, shutting off several systems in an attempt to lessen the impact.</li> </ul> </div></div>