Skip to content
Search
AI Powered
Human content, AI powered search.
Latest Stories

Co-op admits hackers extracted ‘significant’ amount of customer data

Co-op UK cyber attack impacting customer data in the retail industry
Photo: iStock
Pooja Shrivastava
By Pooja ShrivastavaMay 03, 2025
Pooja Shrivastava
A passionate journalist with about a decade of experience, Pooja has developed a strong hold on the UK grocery retail sector. From exploring legislative changes, supply chain shifts, consumer buying habits, trends to retail crime, her work is driven by a deep belief in investigating, finding the truth and telling authentic unbiased stories. Be it convenience pathbreakers, wholesale trendsetters or Post Office Horizon scandal victims, Pooja has an equal flair for deciphering industries as well as human complexities. At Asian Trader, she aims to bridge the gap between policy, trade, and the shop floor, always keeping a finger on the pulse of what matters most to retailers.
See Full Bio
Follow:

Co-op on Friday (2) admitted that the hackers were able to access and extract data relating to a “significant number” of its customers from one of its systems after it was hit by a cyber attack.

The Co-op was forced to shut down parts of its IT system on Wednesday (30) after discovering an attempted hack days after Marks & Spencer faced a serious cyber-incident.

The group, which owns more than 2,000 grocery stores apart from more than 800 funeral parlours, said hackers had been able to access personal data including names and contact details relating to an undisclosed number of the mutual’s current and past members – of which there are more than 6.2 million.

It said the hackers had not been able to access passwords or financial information such as bank or credit card details, transactions or information relating to any members’ or customers’ products or services with the Co-op Group.

The group stated in a statement, "As a result of ongoing forensic investigations, we now know that the hackers were able to access and extract data from one of our systems.

“The accessed data included information relating to a significant number of our current and past members.

“This data includes Co-op Group members’ personal data such as names and contact details, and did not include members’ passwords, bank or credit card details, transactions or information relating to any members’ or customers’ products or services with the Co-op Group."

The National Cyber Security Centre and the National Crime Agency are assisting with the investigation, the company said.

Co-op Group added,, “We are continuing to experience sustained malicious attempts by hackers to access our systems. This is a highly complex situation, which we continue to investigate in conjunction with the NCSC and the NCA.

“We have implemented measures to ensure that we prevent unauthorised access to our systems whilst minimising disruption for our members, customers, colleagues and partners."

The leak of data from the Co-op emerged after the data protection regulator said it was “making inquiries” with the Co-op and Marks & Spencer. It is understood that M&S customer data has not been accessed.

malicious attemptsmarks spencernational crime agencynational cyber security centreco-op cyber attackco-op cyber attack 2025uk retailer data breachco-op customer data stolenretail cybersecurity ukwhat happened in the co-op cyber attack in 2025is my data safe after the co-op uk hack?how did hackers breach co-op’s systems?what are the latest uk retail cyber attacks?how can uk retailers prevent cyber attacks?who is investigating the co-op data breach?what does the ncsc say about co-op cyber attackare co-op stores still open after the cyber attack?how to protect my business from cyber attacks in 2025?what customer data was stolen in the co-op hack?

Related News