The Co-op has revealed that the cyber attack it suffered in April 2025 caused at least £206m in lost revenues, pushing the retailer into a £75m pre-tax loss for the first half of the year. The incident disrupted payments, created widespread shortages in stores, and exposed the data of all 6.5 million Co-op members.
Co-op chair Debbie White described the hack as a “malicious” attack that created “significant challenges” in the business. She said the group now faces the task of rebuilding “better and stronger” in the months ahead.
Impact on Revenues and Operations
The group reported total revenues of £5.48bn for the six months to 5 July, down from £5.6bn a year earlier. The attack not only damaged sales but also forced parts of the business, including its funeral homes, to temporarily revert to paper-based systems.
The disruption was particularly severe in rural areas where Co-op supermarkets are often the only large grocery option. Shoppers faced empty shelves and difficulties with digital payments in the aftermath of the breach.
Data Breach and Security Concerns
After initially downplaying the attack, Co-op later admitted that customer data from all 6.5 million members had been stolen. Hackers claiming responsibility told the BBC they had infiltrated Co-op’s IT systems long before being detected but were prevented from unleashing ransomware when the company disconnected its networks from the internet.
Co-op chief executive Shirine Khoury-Haq praised staff for their response to the crisis but acknowledged weaknesses exposed by the breach, particularly in the food division.
Wider Pressures on UK Retail
The attack came during an already challenging year for the retailer, with rising costs, staffing pressures, and shoplifting losses all weighing on performance. Last year, Co-op posted improved profits but had already warned it faced more than £200m in additional costs in 2025, including £80m linked to theft.
Other major retailers were also targeted. Marks & Spencer reported a £300m hit after halting online sales for six weeks, while Harrods also suffered an attack. Co-op, however, was able to resume trading faster after identifying the breach earlier.
Growing Cyber Threats for UK Businesses
The Co-op is not alone in facing growing cyber risks. In August, Jaguar Land Rover (JLR) was forced to shut down its IT systems after a major hack, suspending UK factory production until at least October.
The incidents highlight the increasing threat of cyber attacks to UK businesses, with both financial and operational consequences mounting across multiple sectors.
