Several major UK retailers including Marks & Spencer (M&S), Co-op, and Harrods—are dealing with serious disruptions after separate cyberattacks threw their operations into chaos. These incidents are raising fresh concerns about the digital safety of the retail sector.
At M&S, the trouble began over Easter weekend. Shoppers couldn’t use gift cards, and in-store click-and-collect stopped working. Soon after, M&S paused all online and app-based orders, though stores stayed open. The company told customers they were working “day and night” to fix the issue. But it shared no technical details about what caused the outage.
Meanwhile, Co-op faced a different kind of breach. The food chain said it spotted attempts to break into its systems earlier this week. As a precaution, Co-op shut down some parts of its network. This caused delays in back-office tasks and call center services. Despite this, its stores and funeral services continued operating as normal.
Staff were also told to turn on cameras during remote meetings and verify participants. This move suggests that Co-op fears hackers might still have access to internal systems. The company hasn’t said whether this was a ransomware attack or if any data was stolen.
Luxury retailer Harrods reported similar trouble. Hackers tried to access its systems, forcing the IT team to cut internet access at physical stores. While this caused some disruption, all locations—including Knightsbridge and airport shops—stayed open. Harrods confirmed that its online store was not affected, but didn’t share more details.
At this point, it’s unclear if the attacks on these UK retailers are connected. No major ransomware group has claimed responsibility, and investigators haven’t linked the events.
Still, these incidents show how vulnerable even well-known UK retailers have become. As more parts of retail go digital, companies face greater risk from cyber threats. Services like payment systems, order tracking, and internal communications can all be targeted.
For UK retailers, the cost of a cyberattack goes beyond downtime. It also includes lost trust, delayed services, and long-term damage to their brand. That’s why businesses are starting to treat cybersecurity as a core part of their strategy—not just a tech issue.
M&S, Co-op, and Harrods may be managing the fallout differently, but the lesson is the same. In today’s landscape, UK retailers must stay alert, act fast, and invest in digital defences before it’s too late.
