M&S customer data stolen amid ongoing cyber attack
M&S has confirmed that personal customer data has been compromised in the ongoing cyber attack that has plagued the retailer’s operations for more than three weeks.
M&S has confirmed that personal customer data was stolen as part of the ongoing cyber attack that has disrupted the retailer’s operations for over three weeks.
The retailer assured customers that the stolen data does not include payment details, card information, or account passwords, and there is no evidence that the data has been shared.
Customers will be prompted to reset their passwords the next time they log in to their M&S accounts as a precautionary measure. The company also shared guidance on staying safe online.
The attack, attributed to the Scattered Spider hacking group, has caused widespread disruption.
Meal deals, including the popular lunchtime and dine-in options have been temporarily paused in stores. Stock shortages persist, and M&S has been forced to halt online orders for over a week. Employees have resorted to using personal WhatsApp accounts to manage operations in the absence of functioning internal communication systems.
M&S is working closely with cybersecurity experts and law enforcement to mitigate the effects of the attack. CEO Stuart Machin thanked customers for their continued support during this challenging period in a statement today (13 May) stating:
“Everyone at M&S is working around the clock to get things back to normal for our customers as quickly as possible. We are very sorry for any inconvenience they have experienced. Our stores remain open as they have throughout, and we remain incredibly grateful for the support from our customers, colleagues, partners, and suppliers during this time.”
-
Related Story
-
The hacking group, Scattered Spider, reportedly gained access to M&S’s IT systems in February, stealing sensitive files from the retailer’s network, including the NTDS.dit file.
This file stores key security data, such as user credentials, which could allow hackers to compromise the entire system.
The attack is believed to be ransomware, though it remains unclear whether M&S has paid a ransom. Sources have suggested that a ransom demand of up to £10m could be in play.
As the attack continues, experts warn of significant financial losses for M&S. Analysts estimate that the disruption could be costing the retailer millions of pounds every week, with stock shortages alone potentially losing M&S up to £15 million for every 10% of food products it cannot sell.
Click here to sign up to Retail Gazette‘s free daily email newsletter
