Staff at the Co-op are being ordered to keep their cameras on during remote work meetings, and verify all attendees, as the company deals with an ongoing cyber attack. In an internal email to the 70,000 members of staff at the supermarket, funeral service and insurance company, workers are being urged to be vigilant as IT teams work to ensure hackers aren't inside their systems. "Don't record or transcribe Teams calls", the instructions say. It disclosed on Wednesday that it had shut down parts of its IT systems in response to hackers attempting to gain access. It comes as supermarket Marks & Spencer (M&S) struggles with a major ransomware attack. It is not known if the hacks are linked. Cyber security consultant Jen Ellis says the email implies that Co-op is worried about the presence of hackers. "Reminding employees to keep their cameras on during conference calls is one way of enabling work to continue while ensuring that everyone is really who they claim to be, and no one unexpected is participating in calls," she told the BBC. On Wednesday, the company said it was taking "proactive measures" to fend off the attack which it said had had a "small impact" on its call centre and back office. But the internal email shows the company has shut off all remote access. No internal applications that require a VPN (Virtual Private Network) can be logged into from home and workers are being told to go to a Co-op location if they need to access work tools. They are also being urged not to post any sensitive information into Teams chats and to report any suspicious messages or emails. The internal email was first reported by ITV News and confirmed by Co-op to the BBC. Co-op is insisting that the cyber attack is under control and that all measures are "proactive". In the past, cyber criminals have accessed internal messaging systems of companies including Uber and Rockstar Games to spy on communications and post ransom demands. These kinds of tactics were used by a group called Lapsus$ which was made up of English speaking teenagers - two of whom were arrested and convicted in the UK in 2023. The attack against M&S is being linked to a potential spin of from Lapsus$ known as Scattered Spider which has been responsible for high profile hacks against MGM Grand casino and Transport for London (TfL). As part of TfL's response to its cyber attack all staff had to report to security teams in person to ensure that the hackers were fully kicked out of IT systems. The incident that has crippled M&S is a ransomware attack using the DragonForce cyber crime service. The Metropolitan Police confirmed it is looking into the cyber attack at M&S. "Detectives from the Met's cyber crime unit are investigating," it said in a statement. M&S has also reported it to the National Cyber Security Centre (NCSC). The BBC understands the body is urging other retailers to be vigilant but it's not thought that retailers are a specific target. An NCSC spokesperson said: "The NCSC routinely engages with a whole range of organisations about the cyber threats that the UK faces and regularly reminds them about the steps they can take to be as resilient as possible." Sign up for our Tech Decoded newsletterto follow the world's top tech stories and trends.Outside the UK? Sign up here.
Co-op cyber attack: Staff urged to keep cameras on in meetings
TruthLens AI Suggested Headline:
"Co-op Implements Remote Meeting Security Measures Amid Ongoing Cyber Attack"
Bbc News
7.4
TruthLens AI Summary
Staff at the Co-op have been instructed to keep their cameras on during remote meetings and verify all participants as the company deals with an ongoing cyber attack. An internal email sent to the 70,000 employees highlighted the need for vigilance as IT teams work to secure their systems against potential intruders. The email specifically advised against recording or transcribing Teams calls, indicating a heightened concern over the possibility of hackers infiltrating their virtual meetings. This move comes in the wake of Co-op's decision to shut down parts of its IT infrastructure in response to hacking attempts. Although the company reported a 'small impact' on its call center and back office operations, the email revealed that all remote access has been disabled, requiring employees to visit Co-op locations for work-related tasks. Staff are also cautioned against sharing sensitive information in Teams chats and are encouraged to report any suspicious communications they might encounter.
The current cyber attack on Co-op coincides with a significant ransomware incident affecting Marks & Spencer (M&S), although it remains unclear if the two attacks are connected. Cyber security consultant Jen Ellis noted that the directive to keep cameras on during meetings serves as a preventive measure to ensure that all attendees are who they claim to be. The Co-op's proactive stance is essential in light of recent trends where cyber criminals have targeted internal messaging systems of major companies. The Metropolitan Police have confirmed that they are investigating the M&S attack, which has been linked to a group known as Scattered Spider, associated with previous high-profile hacks. The National Cyber Security Centre (NCSC) is also involved, advising retailers to remain vigilant against potential cyber threats. Although the NCSC does not believe retailers are specifically targeted, they continue to engage organizations about the necessary steps to enhance their cyber resilience.
TruthLens AI Analysis
The article highlights the ongoing cyber attack faced by the Co-op and the measures being implemented to ensure staff security during remote meetings. The urgency conveyed through the internal communication reflects a broader concern about cybersecurity threats affecting organizations globally.
Purpose Behind the Article
The news aims to inform the public and stakeholders about the challenges Co-op is currently facing due to cyber threats. By emphasizing the need for employees to remain vigilant and follow specific protocols, the article seeks to reassure customers and partners that the company is taking the situation seriously and actively working to mitigate risks.
Public Perception
There's a clear intention to foster a perception of transparency and responsibility within the Co-op. By openly discussing the cyber attack, the company can enhance its image as a trustworthy organization that prioritizes security and employee safety. This response might also serve to preemptively address any potential criticism regarding their cybersecurity measures.
Potential Concealments
While the article provides essential information, it may obscure the full extent of the cyber attack's impact on Co-op's operations. The mention of a "small impact" could be interpreted as an effort to downplay the severity of the situation, leading to questions about what specifics are being withheld from the public.
Manipulative Elements
There are elements of manipulation in the way the news is framed. The use of phrases like "proactive measures" and the insistence that the situation is "under control" could serve to minimize panic among customers and investors. This language can create a false sense of security, suggesting that the situation is manageable when it may not fully be.
Comparative Context
This article can be connected to broader trends in cybersecurity threats that have been increasingly reported in the media. The mention of Marks & Spencer dealing with a ransomware attack suggests a pattern of vulnerability within the retail sector, highlighting the urgency for companies to bolster their defenses against such attacks.
Industry Image
The publication of this news contributes to an image of the retail sector grappling with significant cybersecurity challenges. As companies like Co-op and M&S face attacks, it can raise concerns about the overall security measures in place across the industry, potentially affecting consumer trust.
Societal and Economic Implications
In the short term, this situation could lead to increased scrutiny on Co-op and similar companies regarding their cybersecurity practices. Consumers may be more hesitant to engage with businesses perceived as vulnerable, which could impact sales and stock prices. On a broader scale, the article underscores the urgent need for industries to invest in cybersecurity infrastructure.
Audience Engagement
The news is likely targeted at a wide audience, including employees, customers, stakeholders, and the general public. It aims to resonate particularly with those concerned about digital safety and the implications of cyber threats on everyday business operations.
Market Impact
The article could indirectly influence stock prices, particularly for companies in the retail sector, as investors assess the potential fallout from cybersecurity incidents. Organizations may see fluctuations in their stock values, particularly those perceived to be less secure.
Geopolitical Relevance
While the news primarily focuses on a corporate issue, it reflects the growing global concern over cybersecurity threats, which have implications for national security. As cyber attacks become more sophisticated, they pose risks not just to businesses but also to the general public and government entities.
AI Involvement
It is plausible that AI tools were utilized in crafting this article, particularly in analyzing data trends related to cybersecurity incidents. The structured presentation and concise communication style suggest a methodical approach to information dissemination that AI models could facilitate. If utilized, AI may have influenced the tone and urgency of the message.
The article is largely credible, providing essential insights into the cybersecurity landscape facing Co-op. However, the potential for downplaying the severity of the incident raises questions about transparency. The framing of the narrative may serve to protect the company's image, which could affect public trust.