Everyone has the right to live, learn and work in safety, free from abuse, harm and neglect
Access Help & Support
Pathwaylogocolorfull

Safeguarding Central

What the M&S and Co-op Cyber Attacks Mean for You

In April 2025, two of the UK’s most trusted retailers—Marks & Spencer and the Co-operative Group—were hit by major cyber-attacks. The disruption affected thousands of customers, caused delays, and exposed personal data. But beyond the headlines, these events carry important lessons about how to protect yourself, your family, and your community in an increasingly digital world.

Access Help & Support

Understanding the Real-World Impact of Cyber Crime

What Actually Happened?

  • Hackers, believed to be part of a group called Scattered Spider, infiltrated both companies by tricking staff into giving access—a tactic known as social engineering.

  • Customer data such as names, email addresses, and contact details were accessed.

  • Online systems were temporarily shut down, affecting deliveries, in-store services, and click-and-collect options.

  • Although payment details weren’t stolen, many users were left feeling anxious and uncertain.

What’s the Real-World Impact?

Cyber attacks like these don’t just affect IT departments—they affect real people. Here’s how:

Your Personal Details May Be Used Against You

Even basic information (like your name and email) can be used for scams or fake messages pretending to be from trusted sources.

What you can do:

  • Be cautious with emails and texts asking you to “confirm details” or click a link.

  • Use different passwords for each account.

  • Watch out for delivery scams or refund offers.

Disruption Hits Vulnerable Customers the Hardest

People who rely on home deliveries—such as elderly shoppers or those with limited mobility—can be badly affected when systems go down.

What you can do:

  • Check in on neighbours or family members who may struggle during service disruptions.

  • Encourage others to keep a backup plan for essentials (alternative contact numbers, nearby shops, etc.).

The Weakest Link Is Often Human

In both attacks, the hackers didn’t break through firewalls—they simply fooled someone into giving them access.

What you can do:

  • Be cautious about who you share information with, even if they sound official.

  • If something feels suspicious—pause and double-check.

  • If you’re ever unsure, contact the company directly through a known number or website.

Quick Tips to Stay Safer Online

  1. Use strong, unique passwords for every site.

  2. Turn on two-step verification where available.

  3. Avoid clicking on unknown links—even if they look convincing.

  4. Keep your software and apps updated.

  5. Check for the padlock symbol (🔒) in your browser when entering details.

  6. Talk to others—especially those less confident online—about how to spot scams.

What Can We Learn?

  • Cyber attacks can affect anyone—not just businesses or banks.

  • Everyday actions matter—simple steps can prevent big problems.

  • Staying informed is your best defence—sharing knowledge helps protect those around you.

Be Alert, Not Alarmed

The digital world brings amazing convenience—but it also brings risk. You don’t need to be a tech expert to protect yourself. Just being cautious, asking questions, and looking out for others can make a big difference.