Cyber Attacks: On The Front Line Of A Hack
The Bottom Line
BBC
4.6 • 606 Ratings
🗓️ 19 June 2025
⏱️ 40 minutes
🧾️ Download transcript
Summary
Cyber criminals have seriously damaged some household names recently - M&S, Co-op, North Face, Harrods - but what really happens behind the scenes when a business is hacked?
Evan Davis speaks to the former head of information security at Royal Mail about the major attack it suffered in 2023 - from the initial alert and the eye-watering ransom demand, to the media leak and the long, slow rebuild.
Plus, how should you negotiate with hackers, how sophisticated have they become, and how do they choose their victims?
Evan is joined by:
Jon Staniforth, former Chief Information Security Officer (CISO) at Royal Mail; Lisa Forte, founder and partner, Red Goat.
Production team:
Producer: Simon Tulett Editor: Matt Willis Sound: Nathan Chamberlain and James Beard Production co-ordinator: Sophie Hill and Janet Staples
Transcript
Click on a timestamp to play from that location
| 0:00.0 | BBC Sounds, Music, Radio, Podcasts. |
| 0:05.2 | Thanks for downloading this episode of the Bottom Line podcast, and your reward for doing so |
| 0:10.1 | is that you get extra content, bonus content that you won't find in the radio version. |
| 0:15.2 | If you like it, why not check out an episode from March last year about business disasters. |
| 0:21.6 | It's called In the Eye of a Crisis. |
| 0:23.6 | But first, this is a topic we've covered before on the bottom line, |
| 0:28.0 | but it's sadly one we can't escape cyber attacks. |
| 0:31.3 | They've been back in the news recently with illustrious brands suffering, |
| 0:35.7 | notably retailers, Marks and Spencers, the co-op, North Face |
| 0:39.8 | and Haribs. And what we thought we might do today is rather than having a general discussion |
| 0:44.7 | about cyber security, we thought we'd drill down more deeply into one particular case study |
| 0:51.0 | of an attack and the aftermath. And here to help us is John Staniforth, who was |
| 0:57.1 | Chief Information Security Officer, CISO, CISO, for short. Going to be hearing that |
| 1:04.0 | abbreviation through the program. He was the Chief Information Security Officer at Royal Mail |
| 1:09.6 | when it was hit by a cyber attack a couple of years ago. |
| 1:12.9 | And John, welcome to the bottom line. |
| 1:15.3 | So before we get into what happened, just tell us about CSO, what the CSO does and what you do when there isn't an attack, what your day job is. |
| 1:24.3 | Yeah, no problem. |
| 1:25.6 | So the CSO's role in my view, because it can vary a little bit, |
| 1:28.8 | is really to help look after the organisation and sort of help it manage its data, its business |
| 1:33.9 | processes, protecting the consumers, business customers and that technology and the data that resides |
| 1:40.5 | within it. Right. And then Royal Mail, obviously, we all know not to do with the post office. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from BBC, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of BBC and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.