Spar stores forced to close following supply chain attack

The UK supermarket chain is working with the NCSC to investigate the incident

Spar convenience stores across the UK have either had to revert to cash-only payments or shut altogether following a cyber attack.

More than 300 stores across the North of England have been affected with point of sale devices taken offline, meaning the stores are unable to take card payments.

The attack is believed to have first hit James Hall & Company, a Lancashire-based wholesaler that services Spar UK stores, on Sunday. Its website is currently down with an Error 20, indicating a network failure.

The full extent of the attack is currently unclear but the company said the attack had affected all of its IT systems, including staff emails.

The National Cyber Security Centre (NCSC) is currently investigating the attack and said: "We are aware of an issue affecting Spar stores and are working with partners to fully understand the incident."

A Spar spokesperson added: "We are working to resolve this situation as quickly as possible. It is currently impacting stores’ ability to process card payments meaning that a number of Spar stores are currently closed to shoppers or only taking cash payments.

"We apologise for the inconvenience this is causing our customers and we are working as quickly as possible to resolve the situation."

The nature of the attack is also currently unclear. Ransomware or not, the attack shows how quickly cyber criminals can infect a broad range of targets through a supply chain.

Related Resource

How to reduce the risk of phishing and ransomware

Top security concerns and tips for mitigation

Large letter 'O' against a background of a city - whitepaper from MimecastFree download

"This looks like a supply chain attack at first glance," said Brian Higgins, security specialist at Comparitech. "It’s very difficult to ensure that every link in the chain has appropriate cyber security measures in place and it only takes one vulnerable point to allow criminals into a network. Once they’re in, the knock-on effects can be catastrophic.

"The timing might also be indicative of a planned attack as most retailers don’t run a full back-office service at weekends," he added. "I’m sure there will be a full investigation but it can often be counterproductive to speculate on motive etc. during an ongoing incident."

It's not the first time a European supermarket has been caught up in a supply chain attack this year. Sweden's Coop stores were all hit with REvil ransomware in July this year, as a consequence of the Kaseya breach

Featured Resources

How virtual desktop infrastructure enables digital transformation

Challenges and benefits of VDI

Free download

The Okta digital trust index

Exploring the human edge of trust

Free download

Optimising workload placement in your hybrid cloud

Deliver increased IT agility with the cloud

Free Download

Modernise endpoint protection and leave your legacy challenges behind

The risk of keeping your legacy endpoint security tools

Download now

Recommended

Nigerian cyber criminals target Texas unemployment system
cyber security

Nigerian cyber criminals target Texas unemployment system

27 May 2021
Hackers use open source Microsoft dev platform to deliver trojans
Security

Hackers use open source Microsoft dev platform to deliver trojans

14 May 2021
Cyber attacks on manufacturing up 300% in a year
Security

Cyber attacks on manufacturing up 300% in a year

11 May 2021

Most Popular

How to move Microsoft's Windows 11 from a hard drive to an SSD
Microsoft Windows

How to move Microsoft's Windows 11 from a hard drive to an SSD

4 Jan 2022
How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

6 Jan 2022
Microsoft Exchange servers break thanks to 'Y2K22' bug
email delivery

Microsoft Exchange servers break thanks to 'Y2K22' bug

4 Jan 2022