UK retail big Marks & Spencer has confirmed it’s managing a cybersecurity incident, following a number of days of service disruption that affected retailer operations and buyer experiences. The corporate disclosed the Marks & Spencer knowledge breach incident in a submitting to the London Stock Exchange on April 22, 2025, and reassured prospects that whereas some operations have been quickly adjusted, its shops stay open and each its web site and app are at present purposeful.
The Marks & Spencer data breach incident has raised issues about cybersecurity preparedness in massive retail chains. In accordance with the official submitting launched at 14:14 BST on Monday, Marks & Spencer took fast motion after detecting the breach. The corporate said:
“As quickly as we grew to become conscious of the incident, it was essential to make some minor, momentary modifications to our retailer operations to guard prospects and the enterprise, and we’re sorry for any inconvenience skilled.”
Particulars of the Marks & Spencer Knowledge Breach
Whereas the total extent of the cyberattack on Marks & Spencer stays unclear, the retailer emphasised that it has engaged exterior cybersecurity experts to help with the investigation and mitigation efforts. Moreover, the incident has been reported to the National Cyber Security Centre (NCSC) and related knowledge safety authorities.
Thus far, Marks & Spencer has not confirmed whether or not buyer knowledge has been compromised, a key element eagerly awaited by each the general public and cybersecurity observers. The corporate has promised additional updates ought to the state of affairs evolve.
This knowledge breach at Marks & Spencer has already impacted some in-store providers, together with its standard Click on & Acquire perform. On the social media platform X (previously Twitter), prospects have expressed frustration with ongoing technical points.
Social Media Users Share New Stories
One user, @JohnWH79, posted on April 19:
“Do companies even have business continuity plans anymore? Computers go down and even the basics seem impossible. ‘Sorry sir, finding parcels is what the computer does.’”
In response, Marks & Spencer’s official X account acknowledged the disruption and issued an apology:
“… is now back up and running. Please accept my sincere apologies that at the time you visited your local store, this issue directly affected you, as well as other customers.”
However, further comments from customers suggest the issues are not entirely resolved. As of April 22, Click & Collect services in some stores remain down, prompting more concern.
M&S replied to one such comment:
“We are working hard to resolve some technical issues in our stores, and we are not able to process click and collect orders in some stores at this time. Apologies for the inconvenience – Amelia.”
Customers also questioned the absence of basic contingency plans. One post asked why no manual system, like “paper and pen,” was in place during the downtime.
Conclusion
The Marks & Spencer cyberattack comes at a pivotal second for the retailer, with its monetary yr having ended on March 29, 2025, and full-year outcomes set for launch on Might 21. As analysts carefully monitor the potential impression on buyer confidence and company performance, Marks & Spencer has but to subject additional statements past official filings and social media responses.
Whereas representatives reminiscent of Fraser Ramzan and the Company Press Workplace stay obtainable for inquiries, no new info has emerged relating to the character or scope of the info breach at Marks & Spencer. That is an ongoing story, and The Cyber Express shall be carefully monitoring the state of affairs, and we’ll replace this put up as soon as we’ve extra info on the assault.
Associated
Media Disclaimer: This report relies on inside and exterior analysis obtained by way of numerous means. The data offered is for reference functions solely, and customers bear full duty for his or her reliance on it. The Cyber Express assumes no legal responsibility for the accuracy or penalties of utilizing this info.
