Details apparently published on a dark web site.
The Co-op has announced that attackers accessed and extracted customer data from one of its systems in the recent attack.
Saying it continues to experience a sustained cyber-attack - which has been ongoing since last Wednesday - said on Friday.
According to Reuters, the Co-op said the accessed data included information related to a significant number of its current and past members, including personal data such as names, contact details and dates of birth. It did not include members' passwords, bank or credit card details, transactions or information relating to any members' or customers' products or services with the group.
Shirine Khoury-Haq, CEO of The Co-operative Group confirmed the access of “a limited amount” of member data”, but praised its “amazing colleagues [who] are doing everything they can to continue to deliver the service you would expect from us and I am grateful to them, and to our member-owners for your continued support."
According to
ITV News, these details have now been published on a dark web leak site.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
