Is UK Retail Under A Targeted Cyber Attack?
This week, UK retail has been at the centre of a cyber storm. Co-op, Marks & Spencer, and Harrods have all experienced significant cyber incidents, forcing system shutdowns, service disruptions, and some serious crisis response. From cameras-on policies to staff working on personal devices, the human side of these attacks is impossible to ignore. As reports of ransomware, insider stress, and third-party questions surface, we explore what this all means for awareness, planning, and the people on the ground trying to keep the lights on.
Alongside the retail chaos, we’re also talking password spraying — a technique that’s back in force, targeting Microsoft 365 accounts and exploiting gaps in multi-factor authentication. And if that wasn’t enough, over 1.7 billion stolen passwords have found their way to dark web forums. Yep, billion with a B. We unpack how these attacks work, why they’re still so effective, and what organisations can do to protect their people.
And finally, a story from the train: someone left their laptop open and unlocked for 11 minutes while they wandered off. No screen lock, no awareness, just a glowing screen full of potential risk. It’s a small thing, but it says a lot about how habits — or the lack of them — shape our security exposure every day.
In this episode of The Awareness Angle, we’re not here to panic or point fingers. We’re here to talk about what happened, why it matters, and how we can all respond better. Give it a listen and stay in the loop.
Sign up for The Awareness Angle Newsletter today and get notified every time a new episode is released. Each newsletter contains details of the topics discussed and more from the world of Security Awareness.
You're almost there!
To confirm your subscription, please check your inbox for a confirmation email. Click the link in the email to complete your signup and start receiving our newsletter!
If you don’t see the email within a few minutes, check your spam or junk folder, just in case.
Thank you for subscribing!
💬 Episode 25 Discussion Points
Co-op cyber attack – BBC News
https://www.bbc.co.uk/news/articles/cg72k851dd8o
M&S cyber attack – The Guardian
https://www.theguardian.com/business/2025/may/01/m-and-s-unable-to-take-on-new-workers-as-disruptions-continue-after-cyber-attack
M&S insider reveals staff working conditions – Sky News
https://news.sky.com/story/mands-had-no-plan-for-cyber-attacks-insider-reveals-with-staff-left-sleeping-in-the-office-amid-paranoia-and-chaos-13361359
Harrods targeted in cyber attack – LinkedIn article
https://www.linkedin.com/pulse/harrods-becomes-latest-uk-retailer-targeted-ongoing-1r0lc
Password spraying attack targets Microsoft 365 – Forbes
https://www.forbes.com/sites/daveywinder/2025/04/28/microsoft-confirms-password-spraying-attack---what-you-need-to-know/
1.7 billion stolen passwords on the dark web – Forbes
https://www.forbes.com/sites/daveywinder/2025/04/29/malware-steals-17-billion-passwords---publishes-them-to-dark-web/
WhatsApp adds advanced chat privacy – The Hacker News
https://thehackernews.com/2025/04/whatsapp-adds-advanced-chat-privacy-to.html
Apple sends spyware alerts to targeted users – Mashable
https://mashable.com/article/apple-targeted-mercenary-spyware-attack-april-2025-notifications
FBI offers reward for Salt Typhoon tips – Cybersecurity Dive
https://www.cybersecuritydive.com/news/fbi-china-salt-typhoon-hack-telecom-tips/746490/
PlayStation Store scam game – PlayStation Lifestyle
https://www.playstationlifestyle.net/2025/04/28/ps-store-scam-schedule-1-name-change/amp/
Cybersecurity CEO charged over hospital malware – The Register
https://www.theregister.com/2025/04/28/infosec_ceo_accused_of_installing_malware/
Anti-piracy campaign used pirated font – Sky News
https://news.sky.com/story/you-wouldnt-steal-a-font-famous-anti-piracy-campaign-may-have-used-pirated-typeface-13357462
Iberian power outage and cyber speculation – Reuters
https://www.reuters.com/world/europe/what-could-be-behind-iberian-power-outage-2025-04-29
Kevin Beaumont on Microsoft password spraying – LinkedIn
https://www.linkedin.com/posts/kevin-beaumont-security_microsoft-announced-in-a-friday-night-blogpost-activity-7321615691210543108-1a6T
Joe Head on train laptop screen privacy – LinkedIn
https://www.linkedin.com/posts/joehead1_taking-pictures-of-people-with-their-laptops-activity-7322599457643024384-C4H0
Missed the episode? Watch it below!