HQ/EMEAFind out how we can help your business
Harrods, one of London’s most renowned department stores, has confirmed it faced a cyberattack.
The attack on this firm is the third major UK retailer to report such incidents within a week, following Marks & Spencer and the Co-op.
In a statement to the media, Harrods indicated that hackers recently tried to infiltrate their systems, prompting the company to limit access to some of its websites. Moreover, the firm reveals that it recently experienced attempts to gain unauthorised access to some of its systems.
On the other hand, the store’s experienced IT security team allegedly acted swiftly to safeguard the systems; thus, access to the internet at their locations has been restricted immediately. The report stated that all locations, including the Knightsbridge store, H Beauty outlets, and airport shops, remain operational and ready to serve customers.
The firm also assured that shoppers can continue purchasing via harrods[.]com after stating that they are not asking their customers to change their behaviour and will provide updates as needed.
Harrods has yet to provide further details about the cyberattack.
Harrods has not disclosed further details in response to news outlets’ inquiries, such as whether any systems were breached or data was compromised.
Nevertheless, the choice to limit access to certain platforms suggests a proactive approach to responding to the attack. This incident comes shortly after cyberattacks on two other prominent UK retailers, Marks & Spencer and Co-op.
Last week, Marks & Spencer confirmed it experienced a cyberattack that disrupted its online ordering systems, contactless payments, and Click & Collect service. Investigators later verified that the assault was linked to threat actors using the Scattered Spider methods, who deployed DragonForce ransomware on M&S’s network.
Earlier this week, Co-op also reported a cyber incident, noting they faced attempts to breach their network. However, an internal email from its Chief Digital and Information Officer suggests the breach is more extensive than initially reported.
The email advises staff that VPN access has been disabled and encourages vigilance when using email and MS Teams.
Although law enforcement has not released an official advisory about these attacks, a bulletin from authorities is likely forthcoming, given that M&S and Co-op appear to have faced social engineering attacks.
