In May 2025, two major UK retailers, Marks & Spencer and the Co-op, became the latest high-profile victims of cyberattacks. These incidents have not only caused significant operational disruption and reputational concern but also revealed a crucial vulnerability that many organisations still underestimate: employee awareness.
For businesses of every size and sector, these events serve as a stark reminder that cybersecurity is not just an IT issue – it’s a people issue.
A Wake-Up Call for Every Organisation
In response to the Co-op breach, which affected contactless payments in several stores, the National Cyber Security Centre (NCSC) issued a strong statement. CEO Richard Horne noted, “These incidents should act as a wake-up call to all organisations.” (source)
Similarly, Marks & Spencer confirmed that while no usable payment data or passwords were accessed, “some personal customer information has been taken.” Customers were asked to reset passwords and were given safety guidance, as outlined in a message from their Chief Executive (source).
While both companies acted swiftly to contain the damage, the reality is that cybersecurity breaches are becoming far more common and increasingly sophisticated. What links these events is a reminder that the human layer of security is often the weakest.
What This Means for Learning and Development
A cyber-aware culture cannot be built with firewalls alone. Even the most advanced systems are vulnerable if the people using them are not adequately trained to spot and respond to threats. This is where Learning and Development (L&D) must step in – and why Managed Learning Services (MLS) are more critical than ever.
At Now Training, we help organisations embed cybersecurity awareness into everyday learning through scalable, role-specific, and impactful training programmes. These can be tailored to all levels of the business – from customer-facing employees to senior leaders – to ensure that everyone plays their part in cyber defence.
What Effective Cybersecurity Training Looks Like
Our MLS-led approach to cybersecurity training includes:
- Interactive simulations that teach employees to identify phishing attempts and social engineering tactics
- Microlearning modules that can be accessed quickly and repeatedly to reinforce safe digital habits
- Role-based content that addresses specific risks by job function, from finance to customer service
- Assessment tools and dashboards to track progress and demonstrate compliance
This is about much more than ticking a box. Cybersecurity training must be embedded into workplace culture in the same way health and safety or diversity training is. It should empower teams to act confidently, report suspicious behaviour, and protect both the business and its customers.
It’s Time to Rethink Your Training Priorities
As the digital threat landscape evolves, your learning strategy must evolve with it. The M&S and Co-op breaches remind us that even organisations with significant infrastructure and experience are still at risk – and that the frontline defence starts with people.
Through Managed Learning Services, Now Training enables companies to stay ahead of these challenges with curated content, regular updates, and a culture of continuous learning. In a world where cybercrime can strike at any time, training is no longer optional – it’s essential.
Let us help you build a resilient, cyber-aware workforce today.
What Now Training Brings to the Table
At Now Training, we specialise in Managed Learning Services that respond directly to today’s most urgent challenges — including the growing need for cybersecurity awareness across every level of the workforce. We work closely with our clients to co-design training programmes that equip employees with the knowledge, behaviours, and confidence to recognise and respond to cyber threats. From phishing simulations to secure data handling and digital hygiene, our solutions are tailored to real-world risks and learner engagement.
Our Managed Learning Services cover the full lifecycle — from sourcing expert cybersecurity content and certifications to delivering blended learning experiences backed by live data and insights. Whether it’s helping non-technical teams understand digital vulnerabilities, embedding safe online behaviours, or aligning training with your governance and compliance goals, Now Training enables your workforce to become your first line of defence.
In 2025, cybersecurity is not just an IT issue — it’s a people issue. With digital risk rising across all industries, proactive training is essential. Partnering with Now Training ensures your L&D function plays a strategic role in safeguarding your business while strengthening culture, resilience and operational readiness.
If you’re ready to explore how our Managed Learning Services can help protect your organisation from cyber threats, we’d love to talk. Contact us here or call on 01920 461 222
