CEO Shirine Khoury‑Haq issued a public apology, acknowledging the theft of names, addresses, phone numbers, and email addresses. Although no financial or transactional data was accessed, the incident led to significant operational disruptions, including challenges in grocery replenishment and funeral services. (Image: Coop)
(Image Source)
GLOThe Co-operative Group (Co-op) has confirmed that a cyberattack in April compromised the personal data of all 6.5 million members in its loyalty scheme. CEO Shirine Khoury‑Haq issued a public apology, acknowledging the theft of names, addresses, phone numbers, and email addresses. Although no financial or transactional data was accessed, the incident led to significant operational disruptions, including challenges in grocery replenishment and funeral services.
The attack was attributed to the hacking group Scattered Spider and forced Co-op to take parts of its IT systems offline. The organization detected the breach within hours but revealed it did not hold cyber-insurance, leaving it solely responsible for financial recovery. Khoury‑Haq described the experience as personally devastating and highlighted the emotional toll on staff working through the crisis.
In response, Co-op has partnered with The Hacking Games to launch a nationwide education initiative aimed at encouraging ethical hacking among youth. The program targets 20,000 students across 38 academies and seeks to redirect digital talent into constructive roles within cybersecurity.
The breach formed part of a coordinated attack also affecting major retailers such as Marks & Spencer and Harrods. Authorities have since arrested four individuals, aged 17 to 20, in connection with the attacks. The suspects face multiple charges, including blackmail and money laundering.
-
All 6.5 million Co-op loyalty members had personal data compromised.
-
No payment or transactional data was accessed.
-
The attack disrupted core operations, including groceries and funeral services.
-
Co-op had no cyber-insurance, absorbing full recovery costs.
-
A new ethical hacking program is being rolled out to nurture young cybersecurity talent.
-
Four suspects have been arrested as part of the ongoing criminal investigation.
The incident underscores the growing threat of cybercrime in retail and the urgent need for resilience, both through stronger defenses and public-private initiatives that foster ethical digital innovation.
Co‑op Launches Cybersecurity Initiative in the Wake of Data Breach
In response to the recent cyber-attack that exposed the personal data of all 6.5 million Co-op loyalty members, Co-op has announced a strategic new partnership with The Hacking Games, a specialist internet security and ethical hacking organization. This collaboration aims to build stronger cybersecurity defenses from the ground up while fostering the next generation of cybersecurity experts.
As part of the initiative, Co-op and The Hacking Games will launch educational programs targeting 20,000 students across 38 academies. The curriculum will equip young participants with ethical hacking skills, problem-solving techniques, and hands-on experience in countering real-world cyber threats. Co-op sees this not only as an investment in its own security infrastructure, but also as a proactive step toward cultivating a broader cybersecurity community.
By channeling youth enthusiasm for hacking into legitimate channels, Co-op and The Hacking Games aim to transform potential cyber threats into talent pipelines. This forward-thinking partnership aligns with Co-op’s broader mission to evolve from a breach victim into a cybersecurity champion, reducing vulnerabilities across its network and making a positive impact on society.
Source: GLO / Coop
Disclaimer: Press release
© Press Release 2025
Send us your press releases to news@globalloyalty.org
Press releases originate from external third-party providers. This website does not have responsibility or control over its content, which is presented as is, without any alterations. Neither this website nor its affiliates guarantee the accuracy of the views or opinions expressed in the press release.
The press release is intended solely for informational purposes and does not offer tax, legal, or investment advice, nor does it express any opinion regarding the suitability, value, or profitability of specific securities, portfolios, or investment strategies. Neither this website nor its affiliates are liable for any errors or inaccuracies in the content, nor for any actions taken based on it. By using the information provided in this article, you agree to do so at your own risk.
To the maximum extent permitted by applicable law, this website, its parent company, subsidiaries, affiliates, shareholders, directors, officers, employees, agents, advertisers, content providers, and licensors shall not be liable to you for any direct, indirect, consequential, special, incidental, punitive, or exemplary damages, including but not limited to lost profits, savings, and revenues, whether in negligence, tort, contract, or any other theory of liability, even if the possibility of such damages was known or foreseeable.
The images used in press releases and articles provided by 3rd party sources belong to the respective source provider and are used for illustrative purposes in accordance with the original press releases and publications.
Disclaimer: Content
While we strive to maintain accurate and up-to-date content, Global Loyalty Organisation Ltd. makes no representations or warranties of any kind, express or implied, about the correctness accuracy, completeness, adequacy, or reliability of the information or the results derived from its use, not that the content will meet your requirements or expectations. The content is provided “as is” and “as available”. You agree that your use of the content is at your own risk. Global Loyalty Organisation Ltd. disclaims all warranties related to the content, including implied warranties of merchantability, fitness for a particular purpose, non-infringement, and title, and is not liable for a particular purpose, non-infringement, and title, and is not liable for any interruptions. Some jurisdictions do not allow the exclusion of certain warranties, so these jurisdictions may not apply to you. Global Loyalty Organisation Ltd. Reserves the right to modify, interrupt, or discontinue the content without notice and is not liable for doing so.
Global Loyalty Organisation Ltd. shall not be liable for any damages, including special, indirect, consequential, or incidental damages, or damages for lost profits, revenue, or use, arising out of or related to the content, whether in contract, negligence, tort, statute, equity, law, or otherwise, even if advised of such damages. Some jurisdictions do not allow limitations on liability for incidental or consequential damages, so this limitation may not apply to you. These disclaimers and limitations apply to Global Loyalty Organisation Ltd. and its parent, affiliates, related companies, contractors, sponsors, and their respective directors, officers, members, employees, agents, content providers, licensors, and advisors.
The content and its compilation, created by Global Loyalty Organisation Ltd, are the property of Global Loyalty Organisation Ltd. and cannot be reproduced without prior written permission.
