Blog

Cybersecurity Wake-Up Call: Lessons for UK Businesses from Recent Retail Attacks

7.05.2025

In recent weeks, high-profile UK retailers including Marks & Spencer, Harrods and the Co-op have experienced significant cyberattacks. These incidents have disrupted services and placed considerable strain on internal teams across those organisations.

We recognise the enormous effort IT and security teams will be making behind the scenes to investigate, respond and restore services. Events like these highlight just how important cybersecurity has become for every organisation, regardless of sector or size.

 

A Reminder for Every Business

What makes these incidents particularly noteworthy is not just their visibility, but the fact that the businesses affected are well-established and well-resourced. It reinforces a truth we discuss often with customers: no organisation is immune to cyber risk.

The tactics used by attackers continue to evolve. From phishing and impersonation to exploiting weaknesses in supply chains, these threats are becoming more sophisticated and widespread.

 

As Pat McFadden, Cabinet Office Minister, said in response to the recent attacks:

“In a world where the cybercriminals targeting us are relentless in their pursuit of profit, companies must treat cybersecurity as an absolute priority.”
“Just as you would never leave your car or your house unlocked on your way to work, we have to treat our digital shop fronts the same way.” 

 

Five Practical Steps to Improve Cyber Resilience Today

While the risks are real, so are the solutions. Here are five important steps that any UK business can take today:

  1. Review your incident response plan
    If an attack were to happen tomorrow, would your team or your customer's team know how to respond? An up-to-date, tested plan can make all the difference in reducing disruption.
  2. Regularly train your people
    Many cyber incidents begin with a simple click. Helping employees recognise phishing emails or suspicious requests can prevent major problems.
  3. Monitor for credential leaks and impersonation risk
    Impersonation attacks often rely on stolen login details or leaked credentials. Proactive monitoring of the dark web for your organisation’s data can provide early warnings.
  4. Assess your supply chain risk
    Cybersecurity is only as strong as your weakest link. Make sure your third-party suppliers and partners meet acceptable security standards.
  5. Book a cyber risk assessment
    An expert review can help uncover any gaps in your defences and provide a clear, prioritised plan for improvement.

 

Onecom Partners Is Here to Support You

At Onecom Partners, we work with Partners to strengthen their customers' cybersecurity and build long-term resilience with our recently launched CyberProtect solution. Whether your customer's need support with planning, prevention, detection or response, we’re here to help.

If you would like more information on our CyberProtect product, reach out to your Partner Business Manager or click the link below.

👉 Find out more here

Cybersecurity is no longer just an IT concern. It is a business-critical issue that demands attention and investment. Taking small, smart steps today could help prevent much larger problems tomorrow.