<h2>What is a supply chain attack? </h2>
A supply chain attack occurs when a hacker infiltrates a system by targeting a less secure element in the supply chain, such as a software vendor, hardware provider, or service provider. Instead of attacking the primary target directly, cybercriminals compromise a trusted third party to gain access to larger networks. 
These attacks are particularly dangerous as they exploit trust. A business may assume their suppliers have strong security measures in place, leaving them vulnerable to indirect breaches. It is imperative to select suppliers who have proven security measures in place to ensure the safety of your data. With <a href="https://www.digitalcarehub.co.uk/cyber-security-breaches-survey-2025-what-it-means-for-social-care/#:~:text=The%20number%20of%20organisations%20reporting,in%20the%20last%2012%20months.">43% of UK businesses having experienced some form of cybersecurity breach in the last 12 months</a>, it is important to consider how better to protect your business and your data. 
<h2>The SolarWinds supply chain attack</h2>
One of the most infamous supply chain attacks occurred in 2020 when cybercriminals compromised SolarWinds, a major IT management software provider. Hackers inserted malicious code into SolarWinds’ Orion software updates, causing over 18,000 organisations to unknowingly install an infected update, allowing attackers to spy on internal systems for months. Of these organisations, some were US government agencies and Fortune 500 companies, meaning hackers gained access to government and private systems around the globe. 
This breach demonstrated how a single weak link in the supply chain can have catastrophic consequences. 
<h2>How to protect your business from supply chain attacks </h2>
Your business can take proactive steps to defend against supply chain threats: 
<ul>
<li style="font-weight: 400;" aria-level="1">Audit third-party vendors: Assess suppliers’ security policies and compliance certifications (for example, ISO, GDPR, Cyber Essentials, Cyber Essentials Plus, PCI DSS). Also limit access to only necessary systems.</li>
<li style="font-weight: 400;" aria-level="1">Implement least-privilege access: Restrict vendor permissions to minimise damage if a breach occurs.</li>
<li style="font-weight: 400;" aria-level="1">Monitor for anomalies: Deploy intrusion detection systems (IDS) to spot unusual activity.</li>
<li style="font-weight: 400;" aria-level="1">Require two-factor authentication (2FA): Ensure all third-party logins use 2FA to prevent credential theft. </li>
<li style="font-weight: 400;" aria-level="1">Develop an incident response plan: Prepare for potential breaches with a clear containment and recovery strategy. </li>
</ul>
<h2>How Hyve further protects you from supply chain attacks</h2>
While it is important to take proactive steps in-house to protect your business, for the ultimate protection you should consider working with an expert provider, such as Hyve. Our multi-layered security framework is designed to neutralise supply chain threats before they reach your digital environment, combining proactive ransomware defences with rigorous vendor oversight. 
<h3>Advanced threat prevention at entry points</h3>
According to a <a href="https://aag-it.com/the-latest-phishing-statistics/">survey by AAG</a>, 83% of cyber crime instances in the UK were related to phishing. Cybercriminals can target supply chains through phishing emails and compromised vendor credentials. To combat this, we implement multiple defensive layers. 
Our enterprise-grade email security scans all incoming messages, including those from vendors, for phishing attempts and malicious attachments. Combined with DNS filtering powered by Cloudflare DNS, we block access to known malicious websites which might host compromised vendor tools or updates. Cloudflare’s robust web protection, filtering, and custom rule capabilities further strengthen our defence against web-based threats and reduce the risk of vendor-related compromise. 
All devices accessing your network (internal or vendor-managed), are protected by ESET’s next-gen antivirus with behavioural analysis. This detects and blocks suspicious activity from potentially compromised vendor files or downloads. In addition, our CrowdStrike SIEM platform continuously monitors endpoints and network activity for signs of compromise, providing real-time threat detection and response capabilities to stay ahead of sophisticated attacks. 
<h3>Secure vendor access management</h3>
Third-party access remains <a href="https://www.techradar.com/pro/Report-shows-the-threat-of-supply-chain-vulnerabilities-from-third-party-products">one of the biggest supply chain vulnerabilities</a>. We ensure to enforce strict controls. 
We implement micro-segmentation to isolate vendor access to only approved systems and data. Even if a vendor account is compromised, attackers cannot move laterally through your network. In addition, we offer DUO 2FA verification for vendor logins if necessary, acting as an additional security layer that prevents credential stuffing attacks, even if a vendor’s passwords are leaked in a breach. 
We also apply 2FA controls to our customer portal, MyHyve, ensuring secure client access to critical resources. Similarly, for secure remote access to servers, our OpenVPN solution is configured with 2FA as a standard practice, adding another layer of protection against unauthorised access. 
<h3>Protected software supply chain</h3>
Compromised vendor updates pose significant risks. All third-party software updates undergo malware scanning and integrity checks before deployment. Our team verifies digital signatures and monitors for unusual patterns which might indicate tampering. Hyve also maintains encrypted backups of all critical systems. Even if a vendor’s compromised update encrypts your data, we can restore operations without paying ransoms. 
<h3>Continuous monitoring and compliance</h3>
Supply chain threats evolve constantly. We ensure to adhere and stay up-to-date with certified security standards at all times. As an ISO 27001.27017 certified provider with Cyber Essentials Plus, we ensure all vendors meet stringent security requirements. We also help our customers maintain compliance with NIS2 and DORA regulations. 
<h3>Incident response and recovery</h3>
If a threat emerges, our team of experts immediately isolates affected systems, preventing a further spread. Our disaster recovery solutions ensure business continuity, with tested restoration processes which minimise downtime from supply chain attacks. 
<h2>Your next steps to protect your organisation </h2>
Our approach addresses supply chain security at every critical point, ranging from initial vendor access to potential breach recovery. Combining these best-in-class protections with our certified security practices, we are able to transform your supply chain so that it is a secured asset. 
For organisations handling sensitive data or operating critical infrastructure, Hyve provides the assurance that your supply chain partners do not become your weakest link. 
To discover bespoke solutions for your organisation, <a href="https://www.hyve.com/contact-us/">contact us</a> for a consultation with our cloud experts.

Supply Chain Attacks | What Are They and How to Prevent Them

Major UK retailers Marks &amp; Spencer, Co-op and Harrods have all been targeted by hackers in the last two weeks. While there has not been confirmation that the attacks were all linked, the National Cyber Security Council (NCSC) has acknowledged that all of the attacks followed tactics most commonly associated with the collective nicknamed Scattered Spider. 
Press speculation has centred around the theory that all three incidents could have been social engineering attacks, perpetrated by Scattered Spider. In this context, social engineering refers to attackers using psychological techniques to get employees of a company to trust them, tricking them into giving passwords and security codes. This could involve imitating a company’s help desk, or pretending to be an employee locked out of their account. 
Hackers claiming responsibility for the Co-op attack<a href="https://www.bbc.co.uk/news/articles/c4grn878712o"> spoke to the BBC</a> on the 2nd May, confirming that they had compromised the retail group and stolen customer employee data. However, they denied any responsibility for the Marks &amp; Spencer and Harrods attacks, and denied that they were Scattered Spider hackers, instead calling themselves DragonForce &#8211; the name of a cyber crime service used by attackers. 
The incidents are still under investigation, with further details on the attackers and the impact of the hacks expected to be released.
<h2>Marks &amp; Spencer attack</h2>
Marks &amp; Spencer was the first retailer to be hit by an attack, with issues initially being noticed on Monday 21st April. The company apologised to customers after numerous services were disrupted online and in-store. 
The retailer has since been able to restore some systems, including those responsible for contactless payments, refunds and returns, however, their online ordering system and automated stock systems remain offline. <a href="https://www.theguardian.com/business/2025/may/03/inside-the-marks-and-spencer-cyber-attack-chaos">According to the Guardian</a>, industry insiders have suggested it could take weeks for online orders to be resumed, and even months for all systems to be fully operational. It does not currently appear that any Marks &amp; Spencer customer data has been accessed. 
The attack has highlighted the level of disruption a cyber attack can cause for a business on this scale, with Marks &amp; Spencer losing millions of pounds a day, and employees working around the clock trying to restore systems. An inside source spoke to <a href="https://news.sky.com/story/mands-had-no-plan-for-cyber-attacks-insider-reveals-with-staff-left-sleeping-in-the-office-amid-paranoia-and-chaos-13361359">Sky News</a>, stating “We didn’t have any business continuity plan [for this], we didn’t have a cyber attack plan.”
<h2>Harrods attack</h2>
Luxury department store Harrods released a statement on the 1st May stating “We recently experienced attempts to gain unauthorised access to some of our systems. Our seasoned IT security team immediately took proactive steps to keep systems safe and as a result we have restricted internet access at our sites today.”
While Harrods has not detailed the scale of the attack, the retailer has confirmed that customers do not currently need to do anything differently, and there does not appear to have been an impact on online or in-store operations. 
<h2>Co-op attack</h2>
The Co-op group reported a similar attack on the 2nd May, stating it was “continuing to experience sustained malicious attempts”. They advised that hackers had accessed the data of a significant number or past and current members, including names and contact details, but not passwords or bank and card details. 
Similarly to Marks &amp; Spencer, the attack has caused disruptions across a wide range of operations, including contactless payments, delivery, and stock systems. The Chief Executive of the Co-op, Shirine Khoury-Haq, advised that “Our frontline colleagues are focused on minimising any disruption that might be experienced by our members and customers.”
<h2>How can businesses protect themselves?</h2>
Cabinet Office minister Pat McFadden has spoken at the CyberUK conference, and told UK businesses that these attacks should be a wake-up call: &#8220;In a world where the cybercriminals targeting us are relentless in their pursuit of profit &#8211; with attempts being made every hour of every day &#8211; companies must treat cybersecurity as an absolute priority. We&#8217;ve watched in real time the disruption these attacks have caused, including to working families going about their everyday lives. It serves as a powerful reminder that just as you would never leave your car or your house unlocked on your way to work, we have to treat our digital shop fronts the same way.&#8221;
The NCSC, which is also working directly with the affected organisations, has issued a <a href="https://www.ncsc.gov.uk/blog-post/incidents-impacting-retailers">series of recommendations</a> for the retail sector. Their recommendations include following general <a href="https://www.ncsc.gov.uk/guidance/mitigating-malware-and-ransomware-attacks#actionstotake">NCSC guidance on mitigating malware and ransomware attacks</a>, ensuring you are using multi-factor authentication, enhancing monitoring, reviewing password reset processes, ensuring you can identify atypical logins, and paying specific attention to Domain Admin, Enterprise Admin and Cloud Admin accounts. 
A <a href="https://www.hyve.com/security/">full-stack security suite</a> can protect your organisation against attacks, threats and vulnerabilities, and maintain the confidentiality, integrity and availability of your data. 
However, while these security measures can protect your infrastructure, ultimately, your employees are often your weakest link against social engineering attacks. You can have the strongest possible defences, but if an employee with legitimate access is tricked into giving away details, an attacker can access your systems. Therefore, employee training should be your first line of defence. 
In the unfortunate circumstance that a hacker does infect your system with ransomware, <a href="https://www.hyve.com/managed-services/backup-as-a-service/">backups</a> allow you to restore your data with minimal data loss. On and off-site backups can be configured with customisable backup intervals depending on the importance of the data, and your tolerance to data loss, from a recommended minimum of daily backups, up to real-time replication. 
For further details on cloud security information and protection measures, you can read our dedicated <a href="https://www.hyve.com/insights/cloud-security-hub/">Cloud Security Guide</a>. 
&nbsp;

UK Retail Cyber Attacks | What is the Latest News?

AI is already being used by malicious actors to improve the scale and efficiency of their attacks. The National Cyber Security Centre stated in their<a href="https://www.ncsc.gov.uk/report/impact-of-ai-on-cyber-threat"> report on the near-term impact of AI on the cyber threat</a> that “Artificial intelligence (AI) will almost certainly increase the volume and heighten the impact of cyber attacks over the next two years. All types of cyber threat actor – state and non-state, skilled and less skilled – are already using AI, to varying degrees”.
However, AI-powered security solutions are also rapidly developing to defend against this rising threat. A<a href="https://www.darktrace.com/blog/why-artificial-intelligence-is-the-future-of-cybersecurity"> survey from Darktrace</a> found that 96% of security stakeholders agreed that AI-powered solutions would level up their organisation’s defences. AI is ideally suited for speed, pattern recognition and automation, abilities which can support a strong cyber defense strategy.
<h2>How cybercriminals are using AI</h2>
<h3>Faster, smarter phishing attacks</h3>
Traditional advice for spotting phishing emails relies on tells such as spelling and grammar mistakes, generic greetings, or inconsistent design. However, the advent of AI tools has allowed scammers to largely avoid these signs, creating significantly more realistic phishing emails. 
Many phishing scams are successful due to scale &#8211; while not everyone will fall for a particular email, a percentage will. AI tools can increase the scale a cybercriminal can operate at, creating a larger pool, while also improving the believability of individual emails, raising the success rate.  
AI tools can also be used to add personalised information to a phishing email, often scraping public data the victim has shared online, such as their workplace, hometown, or names of friends, family, or coworkers. This information can be used in a phishing template to trick the reader into giving away personal information, or clicking a malicious link, with very little input needed from the attacker.
<h3>Automated brute force and password cracking</h3>
A brute force attack uses trial and error to guess passwords or other credentials to gain access to a user’s data or to a system. The method involves cycling through every possible combination of characters to reach the correct answer. 
Before AI tools were widely used, brute force attacks were a time-consuming method of accessing information. However, AI and AI-enabled automation increase the speed of the process, enabling attackers to crack a higher volume of passwords, and making the method more efficient. For example, a weak 5-character password might take a human attacker hours to crack, but AI can reduce that time to seconds
At an even more advanced level, AI can predict likely passwords which can be tested first, rather than just cycling randomly through combinations of characters. In the same method as is used to personalise phishing attacks, AI can crawl publicly available information about an individual to guess likely password components, for example their birthday, or a pet’s name. 
<h3>Deepfakes for scams and fraud</h3>
Deepfake technology uses AI trained on audio, images and video to mimic real people. Many people are aware of the use of this technology to create fake videos of celebrities or public figures, but may be unaware that cybercriminals can also incorporate it in their attacks.
A scammer can create a model of a family member or colleague’s voice and appearance from a video available online, or through a recording they have made through a previous scam call. They can then fake any message they choose &#8211; this could be asking for money to be transferred, or for login details to a company&#8217;s system. 
An example of this occurred in early 2024, when British engineering company Arup was the victim of a deepfake scam. An employee was tricked into transferring £20 million to criminals following a video conference call with AI-generated deepfakes of senior staff. 
With the level of technology now available, it can be almost impossible to discern a deepfake from the real thing, leading to a high risk of falling for this style of attack. 
<h3>Sophisticated ransomware</h3>
Ransomware is one of the most common, and most devastating, forms of cyber attack. In a ransomware attack, the cybercriminal gains access to a company’s data, encrypts it, and demands payment to return access. 
While a ransomware attack can be successful without the use of AI or automation, these tools can simplify and speed up the process. AI could be used to find vulnerabilities in a system, evade traditional security defenses, and automation can simplify elements such as communicating with the target. When the process is simpler to implement, it will require less skill and resources from an attacker. 
AI can also aid in making an attack smarter and more targeted. This could involve using AI to analyse the target system to identify the most critical files to encrypt to create the maximum disruption, or customise the ransom demand based on the company size or value, predicting the largest payout a company may be likely to make. 
In this way, automation simplifies delivery, and AI makes ransomware attacks more strategic.
<h2>How AI is helping defend against cyber threats</h2>
While it is crucial to understand how AI is being used by criminals, its impact is not all negative. Just as attackers use AI and AI-enabled automation tools to improve their approach, they can also improve cyber defenses. For example, leading tools such as Crowdstrike’s threat detection and response software use AI to detect and isolate threats in real time.
There are several benefits of integrating AI in a security strategy:
<ul>
<li style="font-weight: 400;" aria-level="1">Predictive threat detection: AI can rapidly analyse network traffic to flag suspicious behaviour before a breach. Automated systems can be configured to alert the security team of a potential threat, and even to automatically trigger defenses.</li>
<li style="font-weight: 400;" aria-level="1">User behaviour analytics: Using a similar pattern recognition approach, AI tools can monitor the behaviour of system users to catch anomalies, for example unusual logins. </li>
<li style="font-weight: 400;" aria-level="1">Faster incident response: AI can speed up manual processes, for example detecting, diagnosing and isolating cyber incidents. The faster you can act on a breach, the less impact it will have on your operations. </li>
<li style="font-weight: 400;" aria-level="1">Adaptive defence systems: Machine learning allows AI systems to evolve and adapt to new attack methods, without manual updates, keeping your defences up to date. </li>
</ul>
It is important to note that AI cannot replace security processes. While it has significant capabilities, AI is not perfect. For example, AI-based systems can be vulnerable to attacks such as data poisoning, where hackers manipulate the data the AI learns from to degrade its effectiveness. 
To protect your infrastructure, you should use AI tools alongside a<a href="https://www.hyve.com/security/"> strong security stack</a>, regular employee training, multi-factor authentication, and regular backups.
<h2>Is your infrastructure protected?</h2>
With cyberthreats and cybersecurity rapidly evolving due to the rise of AI and automation, it is essential to ensure your infrastructure is secure.  
For further details on cloud security information and protection measures, you can read our dedicated<a href="https://www.hyve.com/insights/cloud-security-hub/"> Cloud Security Guide</a>. Alternatively, if you’re ready to upgrade your security, a consultation with one of our cloud experts can help you identify any vulnerabilities in your current defences, and develop a bespoke strategy to protect your organisation.<a href="https://www.hyve.com/contact-us/"> Fill out our contact form</a> and one of the team will be in touch. 
&nbsp;

How AI is Changing Cyberattacks and Security Defences

Migrate to a solution in our Frankfurt data centre for free, with no setup costs for your platform. Enjoy seamless migration handled by our expert team of engineers.

Free migration for new customers

'Best-in-class hosting architecture

'Best of breed' hosting architecture

'Extra-mile' support

Our core values

Excellent 'value for money'

Thank you for your interest in joining our team! Currently, we don't have any job openings available, but please check back in the future for new opportunities.

Certifications and accreditations

Data Centre Colocation

Our {header}

Find your global data centre

Discuss your hosting requirements with us today

Speak to an expert

Talk about your license

Full name

Please share information about your requirements

Thank you {name} for getting in touch!

Speak to a cloud specialist

Access our extensive global network

Our London Colocation solutions eliminate the cost and security risk of maintaining hardware in your facility while allowing you to keep full control of your infrastructure. When you colocate with Hyve, our team of experts will get to know your business and infrastructure inside out, to determine the best solution for your organisation, according to your needs. Have the confidence that your infrastructure and business-critical data are kept safe when colocating with Hyve.

Our technology partners

What our customers say about us

Our {location} Data Centres

Why Choose Hyve in {location}?

Have you been affected by Broadcom’s acquisition of VMware?

Delivering strategic technical advice, services and support to our valued customers

Our Case Studies

Downloads

Discover Private Cloud

All the benefits of cloud technology, with the increased security and control of dedicated hardware.

Managed Private Cloud

Discover Dedicated Servers

Keep your sensitive data locked down in one of our high-powered, ultra-secure dedicated servers.

Dedicated Servers

Discover Hyve VPC

Virtualise workloads on our multi-tenant cloud platform for increased flexibility, scalability and cost efficiency.

Hyve Virtual Private Cloud

Discover Colocation

Eliminate the expense of maintaining your own infrastructure, while retaining complete control of your servers.

Colocation

Success Stories - Baxter & Bailey

Success Stories - Medichecks

Success Stories - PTA Events

Success Stories - Broadlight

Success Stories - Testimonial

Hyve Managed Hosting Customer Reviews - Trustpilot 2021 #1

Hyve Managed Hosting Customer Reviews - Trustpilot 2021 #2

We understand that security is the foundation of every successful business. That’s why our experts provide continuous protection for your website or application with our range of security services.
We offer a multi-layered approach to security that is designed to protect your business against attacks, threats and vulnerabilities, meet compliance requirements and minimise downtime from potential breaches, so you can run your business with greater confidence.

managed-security-adding-a-hard-drive

Managed-security-adding-a-hard-drive

Expert security solutions

left

Learn more

Data encryption

DDoS defence

Firewalls

SSL Certificates

Virtual Private Network

Intrusion prevention system (IPS)

Intrusion detection system (IDS)

Malware Protection

AntiVirus

Penetration Testing

Vulnerability Scanning

Two Factor Authentication

Web Application Firewall

Patch management

Our security services suite is designed to go beyond industry standards and maintain the confidentiality, integrity and availability of your data.

Our full-stack security suite

hyve-managed-hosting-hyve-green-wall

Hyve-managed-hosting-hyve green-wall

We understand that security is the foundation of every successful business. That’s why our cloud experts provide continuous protection for your website or application with a comprehensive suite of security services.
Our multi-layered approach safeguards your business from attacks, threats and vulnerabilities, ensures compliance with industry regulations, and minimises downtime caused by potential breaches. Hyve allows you to focus on what you do best, knowing your digital assets are secure.

SSL certificates

Virtual private network

Malware protection

Penetration testing

Vulnerability scanning

Two factor authentication

Web application firewall

Our suite of security services is designed to go beyond industry standards and maintain the confidentiality, integrity and availability of your data.

cloud-security-hyve-managed-hosting

hyve-header-security-services-mobile

Secure your IT infrastructure with our full-stack security solutions