Harrods, the renowned luxury retailer, has acknowledged an attempted cyberattack on its systems, becoming the third major UK retailer to report such an incident within a fortnight. The company issued a statement indicating that, similar to an earlier attack on Co-op, the breach may not have succeeded.
In its communication to The Register, Harrods stated, “We recently experienced attempts to gain unauthorized access to some of our systems.” The firm assures its customers that all its stores, including those located in Knightsbridge, H beauty shops, and airport venues, remain operational despite the security concerns. Harrods refrained from commenting on specific safety measures taken, such as restricting internet access.
The ongoing cyber challenges faced by Harrods follow similar incidents at M&S and Co-op, which have yet to determine if ransomware was involved in the breaches. Reports allege that Scattered Spider, a known affiliate of ransomware operations, could be linked to these attacks. Will Thomas, a threat intelligence expert and SANS instructor, has urged UK retailers to enhance their cybersecurity defenses.
Richard Horne, CEO of the UK’s National Cyber Security Centre (NCSC), has publicly commented, stating that the wave of cyberattacks should serve as a wake-up call for all organizations. He emphasized the NCSC’s commitment to assisting affected retailers and stressed the urgency for businesses to adopt protective measures against such attacks.
While links between the recent cyberattacks on these retailers remain unclear, experts are closely monitoring the situation. The NCSC continues to work with affected organizations to provide advice and support as the retail sector grapples with these escalating cyber threats.