Is UK Retail Under A Targeted Cyber Attack?


Is UK Retail Under A Targeted Cyber Attack?

This week, UK retail has been at the centre of a cyber storm. Co-op, Marks & Spencer, and Harrods have all experienced significant cyber incidents, forcing system shutdowns, service disruptions, and some serious crisis response. From cameras-on policies to staff working on personal devices, the human side of these attacks is impossible to ignore. As reports of ransomware, insider stress, and third-party questions surface, we explore what this all means for awareness, planning, and the people on the ground trying to keep the lights on.

Alongside the retail chaos, we’re also talking password spraying — a technique that’s back in force, targeting Microsoft 365 accounts and exploiting gaps in multi-factor authentication. And if that wasn’t enough, over 1.7 billion stolen passwords have found their way to dark web forums. Yep, billion with a B. We unpack how these attacks work, why they’re still so effective, and what organisations can do to protect their people.

And finally, a story from the train: someone left their laptop open and unlocked for 11 minutes while they wandered off. No screen lock, no awareness, just a glowing screen full of potential risk. It’s a small thing, but it says a lot about how habits — or the lack of them — shape our security exposure every day.

In this episode of The Awareness Angle, we’re not here to panic or point fingers. We’re here to talk about what happened, why it matters, and how we can all respond better. Give it a listen and stay in the loop.

💬 Episode 25 Discussion Points


Co-op cyber attack – BBC News
https://www.bbc.co.uk/news/articles/cg72k851dd8o

M&S cyber attack – The Guardian
https://www.theguardian.com/business/2025/may/01/m-and-s-unable-to-take-on-new-workers-as-disruptions-continue-after-cyber-attack

M&S insider reveals staff working conditions – Sky News
https://news.sky.com/story/mands-had-no-plan-for-cyber-attacks-insider-reveals-with-staff-left-sleeping-in-the-office-amid-paranoia-and-chaos-13361359

Harrods targeted in cyber attack – LinkedIn article
https://www.linkedin.com/pulse/harrods-becomes-latest-uk-retailer-targeted-ongoing-1r0lc

Password spraying attack targets Microsoft 365 – Forbes
https://www.forbes.com/sites/daveywinder/2025/04/28/microsoft-confirms-password-spraying-attack---what-you-need-to-know/

1.7 billion stolen passwords on the dark web – Forbes
https://www.forbes.com/sites/daveywinder/2025/04/29/malware-steals-17-billion-passwords---publishes-them-to-dark-web/

WhatsApp adds advanced chat privacy – The Hacker News
https://thehackernews.com/2025/04/whatsapp-adds-advanced-chat-privacy-to.html

Apple sends spyware alerts to targeted users – Mashable
https://mashable.com/article/apple-targeted-mercenary-spyware-attack-april-2025-notifications

FBI offers reward for Salt Typhoon tips – Cybersecurity Dive
https://www.cybersecuritydive.com/news/fbi-china-salt-typhoon-hack-telecom-tips/746490/

PlayStation Store scam game – PlayStation Lifestyle
https://www.playstationlifestyle.net/2025/04/28/ps-store-scam-schedule-1-name-change/amp/

Cybersecurity CEO charged over hospital malware – The Register
https://www.theregister.com/2025/04/28/infosec_ceo_accused_of_installing_malware/

Anti-piracy campaign used pirated font – Sky News
https://news.sky.com/story/you-wouldnt-steal-a-font-famous-anti-piracy-campaign-may-have-used-pirated-typeface-13357462

Iberian power outage and cyber speculation – Reuters
https://www.reuters.com/world/europe/what-could-be-behind-iberian-power-outage-2025-04-29

Kevin Beaumont on Microsoft password spraying – LinkedIn
https://www.linkedin.com/posts/kevin-beaumont-security_microsoft-announced-in-a-friday-night-blogpost-activity-7321615691210543108-1a6T

Joe Head on train laptop screen privacy – LinkedIn
https://www.linkedin.com/posts/joehead1_taking-pictures-of-people-with-their-laptops-activity-7322599457643024384-C4H0

Missed the episode? Watch it below!