Please or to access all these features

Add post

Watch this thread

Save thread

Start a new thread

Flip thread

Hide thread

My feed

Active Unanswered threads

Getting started FAQ's

Unanswered threads Acronyms Talk guidelines

Hide shortcut buttons

Talk

AIBU?

Share your dilemmas and get honest opinions from other Mumsnetters.

Flip

1 2

Original poster

To be concerned at our absolute sheer vulnerability to cyberattacks

32 replies

Nutmuncher · 13/05/2025 12:06

The M&S and Co-op attacks need to be a wake up call to every business, service provider, leader, policy maker and contingency planner in this country. All it would take to bring complete chaos to every town and city in the country would be a simultaneous attack on our supermarkets and their supply chains.

The M&S attack is now weeks on and it’s plain to see that whatever systems they used prior to this were finely tuned to ensure stores were well stocked all of the time and that without these systems it is virtually impossible to have any semblance of operational continuity. Until I walked in and saw my local M&S almost fully depleted of fresh fruit, salad, vegetables, ready meals, sandwiches, cereals, tinned goods, bakery I was blissfully unaware of how much of an impact these attacks could have.

Now imagine if these attackers did the same to Tesco, Sainsbury’s, Asda, Morrisons, Lidl, Aldi, Waitrose, Ocado, Booths, Spar, Cost Cutters, Home Bargains. It could cripple the whole Nation and bring about a risk of social unrest on a scale never seen before. What plans are in place should such an unthinkable yet entirely possible scenario arise? Where exactly would we get food from if we couldn’t pay for it or it simply wasn’t arriving into stores?

There doesn’t seem to be a week that goes by without hearing of payments problems, connectivity issues, network failures. Yes a lot will be purely benign technical issues but hackers will be testing the perimeters searching for any vulnerabilities to exploit.

Businesses with all their operational eggs in one basket need to urgently put in place multilayered plans to avoid becoming the next M&S and risking weeks long chaos should such an attack happen to them.

OP posts:

crackofdoom · 14/05/2025 08:24

InfoSecInTheCity · 14/05/2025 08:15

Oh and for anyone interested, around 90% of cyber incidents are caused by human error. So that really basic and annoying annual training you do at work is actually really important because honestly if the company is going to be hacked it’s highly likely that it will be because:

a) someone clicked on a link and entered their login details
b) someone let the person behind tailgate into the building
c) someone didn’t do all the checks when resetting a password over the IT phoneline
d) someone picked Password123 as their password then wrote it down and stuck it under their keyboard.

I was dating someone for a while who worked for a global software company, in a department that dealt with the internal IT. As a test they sent everyone in the company an email from an unknown address, containing a link. About 80% of employees clicked on the link 🤦‍♀️.

Sajacas · 14/05/2025 10:03

Bit of a digression here but...

If you want to be even more terrified and enjoy reading fiction, anything by Marc Elsberg.
Each book tackles a different way that modern civilization is disastrously vulnerable to attack and break down. For example, Black Out, what happens if malicious parties hack the power grids. Like what may have happened in Spain and the UK recently.
Really good reads and it is interesting to think about how vulnerable modern society is.

TheNinkyNonkyIsATardis · 14/05/2025 10:57

One of the problems is not just over-reliance on ICT, but on ICT staff, whose instinct is to "make the ICT better". You need offline back up processes that are practiced and ready to go.

I had to point out to our company after Crowdstrike that we didn't have a printed copy of our disaster response plans.

purplecorkheart · 14/05/2025 11:04

I manage a relatively small business in the scheme of things. We have had a number of attempted attacks including yesterday.

I have a meeting with our directors at the end of the month. I know at that meeting I will be asked why our Cyber Security expenses are so high and will have to justified it.

LoveSkaMusic · 14/05/2025 12:53

purplecorkheart · 14/05/2025 11:04

I manage a relatively small business in the scheme of things. We have had a number of attempted attacks including yesterday.

I have a meeting with our directors at the end of the month. I know at that meeting I will be asked why our Cyber Security expenses are so high and will have to justified it.

I would definitely recommend some kind of gap/efficacy analysis to understand whether your cyber budget is being used appropriately.

Vroomfondleswaistcoat · 14/05/2025 12:58

I work in a Co Op. I know deliveries to shops in places that are isolated with only a Co Op (Scottish islands etc) are being prioritised, so anything that can go out is going there first. So we are getting very small random deliveries, so two cages of goods rather than 30. Locals are being very understanding, but it's a 30 mile trip to the nearest other supermarket of any size, so I feel their patience may be waning, and there's nothing we can do!

I think ALL systems might be tightened up as a result, but if hackers want in, they will get in, particularly if there's money to be made.

Snorlaxo · 14/05/2025 13:10

https://www.thisismoney.co.uk/money/markets/article-14710507/Co-op-stock-shelves-recovers-crippling-cyber-hack.html?ico=mol_desktop_home-newtab&molReferrerUrl=https%3A%2F%2Fwww.dailymail.co.uk%2Fhome%2Findex.html

Coop stock levels to start recovering this weekend apparently.

Co-op to re-stock shelves as it recovers from crippling cyber hack

Availability in Co-op shops and website will start to recover from this weekend as the retailer brings its systems back online following a major cyber attack.

Flip

1 2