Cyberattack Leaves Co-op Shoppers Facing Empty Shelves

Co-op stores across the UK have been hit by widespread disruption following a cyberattack on the retailer’s third-party IT supplier, leaving customers unable to find key fresh items such as fruit and vegetables on shelves.

Over the weekend, shoppers reported unusually bare aisles in Co-op branches, with empty shelves where produce, chilled foods and essentials would normally be. The shortage is not the result of supply chain issues, but rather the fallout from a cyber incident targeting the systems of the retailer’s supply chain partner, resulting in major delays to stock deliveries.

The issue stems from a cyberattack on IT provider Avara Foods, which affected Nisa – the wholesale distributor used by hundreds of independently-run Co-op stores across the country. The attack effectively severed digital links between stock ordering systems and distribution channels, preventing stores from receiving their regular deliveries.

A Co-op spokesperson confirmed: “We are aware of the current situation affecting stock levels in some of our stores due to a third-party system outage. We’re working closely with our suppliers to resolve the issue as quickly as possible.”

Shoppers expressed confusion and concern on social media, with many posting photos of near-empty produce sections. One customer described the scene at their local store as “eerie”, adding, “There were no fresh items at all – just empty crates where fruit and veg should be.”

Nisa, which is owned by The Co-op Group but services independently run stores, has not confirmed when normal service will resume, but teams are working around the clock to restore full operations. In the meantime, store staff have been restocking manually where possible, though delays remain widespread.

The incident highlights the vulnerability of complex supply chains to cyber threats, particularly in the retail and food sectors where just-in-time logistics are critical. With fresh produce among the most time-sensitive stock, any disruption quickly becomes visible to consumers.

As investigations continue, retailers and suppliers alike are being reminded of the need to bolster cybersecurity resilience to protect both operations and customer confidence.