Harrods the next UK retailer targeted in a cyberattack

In a statement shared with BleepingComputer, Harrods says threat actors recently attempted to hack into their systems, causing the company to restrict access to sites. However, an internal email sent by Chief Digital and Information Officer Rob Elsey and seen by ITV News indicates the breach is larger than stated initially, telling employees that VPN access was disabled and urging staff to be extra vigilant when using email and Microsoft Teams. London's iconic department store, Harrods, has confirmed it was targeted in a cyberattack, becoming the third major UK retailer to report cyberattacks in a week following incidents at M&S and the Co-op. BleepingComputer later confirmed the attack was linked to threat actors associated with the "Scattered Spider" tactics, who deployed the DragonForce ransomware on the company's network. Last week, Marks and Spencer confirmed it had suffered a cyberattack that led to disruption of its online ordering systems, contactless payments, and Click & Collect service. Lawrence Abrams Lawrence Abrams is the owner and Editor in Chief of BleepingComputer.com. Lawrence's area of expertise includes Windows, malware removal, and computer forensics. "We recently experienced attempts to gain unauthorised access to some of our systems," Harrods told BleepingComputer. Harrods has not shared any further details in response to BleepingComputer's questions, such as whether systems were breached or if data was stolen. Law enforcement has yet to release an official advisory related to these attacks, but as M&S and Co-op are both believed to have started with social engineering attacks, we will likely see a bulletin released shortly. Lawrence Abrams is a co-author of the Winternals Defragmentation, Recovery, and Administration Field Guide and the technical editor for Rootkits for Dummies. Yesterday, Co-op also disclosed a cyber incident, stating they experienced attempts to hack into their network.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Thu, 01 May 2025 18:35:10 +0000


Cyber News related to Harrods the next UK retailer targeted in a cyberattack

Harrods the next UK retailer targeted in a cyberattack - In a statement shared with BleepingComputer, Harrods says threat actors recently attempted to hack into their systems, causing the company to restrict access to sites. However, an internal email sent by Chief Digital and Information Officer Rob ...
1 month ago Bleepingcomputer.com Dragonforce Scattered Spider
Harrods the next UK retailer targeted in a cyberattack - In a statement shared with BleepingComputer, Harrods says threat actors recently attempted to hack into their systems, causing the company to restrict access to sites. However, an internal email sent by Chief Digital and Information Officer Rob ...
1 month ago Bleepingcomputer.com Scattered Spider Dragonforce
Understanding Each Link of the Cyberattack Impact Chain - It's often difficult to fully appreciate the impact of a successful cyberattack. Other consequences aren't so obvious - from a loss of customer trust and potential business to stolen data that may surface as part of another cyberattack years later. ...
1 year ago Securityboulevard.com
Harrods becomes latest retailer to announce attempted cyberattack | The Record from Recorded Future News - Responding to unconfirmed reports that Marks & Spencer was impacted by a ransomware attack — something the committee has complained the government isn’t doing enough to address – Western said: “Ransomware is a real and growing threat to ...
4 weeks ago Therecord.media
Ace Hardware says 1,202 devices were hit during cyberattack - Ace Hardware confirmed that a cyberattack is preventing local stores and customers from placing orders as the company works to restore 196 servers. Ace Hardware is a hardware store retailer-owned cooperative that operates 17 distribution centers and ...
1 year ago Bleepingcomputer.com LockBit
Ace Hardware hit in cyberattack, CEO confirms The Register - Ace Hardware appears to have been the latest organization to succumb to a cyberattack, judging by its website and a message from CEO John Venhuizen. The site today warns that the retailer-owned cooperative is unable to process online orders. A memo ...
1 year ago Theregister.com
Cyberattack on health services provider impacts 5 Canadian hospitals - A cyberattack on shared service provider TransForm has impacted operations in five hospitals in Ontario, Canada, impacting patient care and causing appointments to be rescheduled. TransForm is a not-for-profit, shared service organization founded by ...
1 year ago Bleepingcomputer.com
Ukraine's largest home improvement retailer disrupted by cyberattack | The Record from Recorded Future News - Ukraine’s largest home improvement retailer, Epicentr, said it had fallen victim to a large-scale cyberattack that disrupted operations at dozens of its stores across the country and crippled key IT systems, including sales registers and logistics ...
1 month ago Therecord.media
Harrods Store Hit by Cyber Attack Following Marks & Spencer and Co-op - Harrods issued a statement on Friday morning, acknowledging that its systems were compromised in a “targeted cyber incident.” The store assured customers that its operations remain unaffected, with its physical and online stores ...
4 weeks ago Cybersecuritynews.com
Major Retail Chains Suffer Data Breaches Amid Rising Cyber Threats to Consumer Trust - These incidents, occurring amid a 52% year-over-year rise in retail cyber vulnerabilities according to a 2025 survey, highlight the escalating risks facing an industry that processes billions of sensitive customer transactions annually. At M&S, ...
2 weeks ago Cybersecuritynews.com Hunters Scattered Spider
DragonForce Ransomware Hits Harrods, Marks and Spencer, Co-Op & Other UK Retailers - The UK’s National Cyber Security Centre has urged all retailers to strengthen their cybersecurity measures and advised consumers to monitor banking activities and update passwords. Cyber Security News is a Dedicated News Platform For Cyber ...
3 weeks ago Cybersecuritynews.com CVE-2021-44228 Dragonforce
Nissan is investigating cyberattack and potential data breach - Japanese car maker Nissan is investigating a cyberattack that targeted its systems in Australia and New Zealand, which may have let hackers access personal information. Details of the attack have not been published but the company informed customers ...
1 year ago Bleepingcomputer.com
10 Million JD Sports Customers Impacted by Security Breach Hackers Steal Customer Details from Sports Fashion Retailer Data Breach at JD Sports Affects 10 Million Customers - If you've purchased trainers from sports fashion retailer JD Sports in the past, your personal details could now be in the hands of hackers. Customers of the UK high street retailer are being contacted with a warning that cybercriminals have accessed ...
2 years ago Bitdefender.com
Mortgage giant Mr. Cooper hit by cyberattack impacting IT systems - U.S. mortgage lending giant Mr. Cooper was breached in a cyberattack that caused the company to shut down IT systems, including access to their online payment portal. Mr. Cooper is a mortgage lending company based out of Dallas, Texas, that employs ...
1 year ago Bleepingcomputer.com
Memorial University recovers from cyberattack, delays semester start - The Memorial University of Newfoundland continues to deal with the effects of a cyberattack that occurred in late December and postponed the start of classes in one campus. MUN is the largest public university in Atlantic Canada, with an academic and ...
1 year ago Bleepingcomputer.com Dragonforce
Ohio Lottery hit by cyberattack claimed by DragonForce ransomware - The Ohio Lottery was forced to shut down some key systems after a cyberattack affected an undisclosed number of internal applications on Christmas Eve. While the incident is now under investigation, and the lottery is working to restore all impacted ...
1 year ago Bleepingcomputer.com Dragonforce
Guardians of Finance: loanDepot Confronts Alleged Ransomware Offensive - Among the leading lenders in the United States, loanDepot has confirmed that the cyber incident it announced over the weekend was a ransomware attack that encrypted data. In the United States, LoanDepot is one of the biggest nonbank mortgage lenders. ...
1 year ago Cysecurity.news
Kaspersky Unveils New Flagship Product Line for Business, Kaspersky Next - PRESS RELEASE. Woburn, MA - April 16, 2024 - Today Kaspersky introduced its new flagship product line, Kaspersky Next, combining robust endpoint protection with the transparency and speed of EDR, alongside the visibility and powerful tools of XDR. ...
1 year ago Darkreading.com
UK Legal Aid Agency investigates cybersecurity incident - The Legal Aid Agency (LAA), an executive agency of the UK's Ministry of Justice that oversees billions in legal funding, warned law firms of a security incident and said the attackers might have accessed financial information. The UK National Crime ...
3 weeks ago Bleepingcomputer.com Dragonforce
Long Beach, California turns off IT systems after cyberattack - The Californian City of Long Beach is warning that they suffered a cyberattack on Tuesday that has led them to shut down portions of their IT network to prevent the attack's spread. Long Beach is the home to approximately 460,000 people and is the ...
1 year ago Bleepingcomputer.com
US mortgage lender loanDepot confirms ransomware attack - Leading U.S. mortgage lender loanDepot confirmed today that a cyber incident disclosed over the weekend was a ransomware attack that led to data encryption. LoanDepot is a major nonbank mortgage lender in the United States, with over $140 billion in ...
1 year ago Bleepingcomputer.com Akira
Staples confirms cyberattack behind service outages, delivery issues - American office supply retailer Staples took down some of its systems earlier this week after a cyberattack to contain the breach's impact and protect customer data. Staples operates 994 stores in the US and Canada, along with 40 fulfillment centers ...
1 year ago Bleepingcomputer.com
M&S warehouse workers told not to come to work following cyberattack | The Record from Recorded Future News - It follows the company — which has more than 1,400 stores worldwide and made a profit before tax last year of £672 million ($896 million) — announcing on Friday that it was pausing all online shopping three days after it initially announced it ...
1 month ago Therecord.media
Protecting credentials against social engineering: Cyberattack Series - Our story begins with a customer whose help desk unwittingly assisted a threat actor posing as a credentialed employee. In this fourth report in our ongoing Cyberattack Series, we look at the steps taken to discover, understand, and respond to a ...
1 year ago Microsoft.com
SW Ontario hospitals confirm patient data compromised in cyberattack - As the fallout from last week's cyberattack against five southwestern Ontario hospitals continues to spread, the organizations confirmed Tuesday that patient information was stolen and they now fear the blackmailers might publish it online. TransForm ...
1 year ago Windsorstar.com