Summary
Marks & Spencer has confirmed that a recent cyber-attack has resulted in the theft of some personal customer data. The data breach, linked to a ransomware attack that has impacted their online operations for over three weeks, includes names, addresses, and order histories. However, M&S reassures customers that sensitive payment information and passwords were not accessed.
The company has paused online orders since April 25 as it works to resolve the IT issues. Although affected customers will be prompted to reset their passwords for additional security, M&S has indicated there’s no immediate action needed from them.
Key Points
- M&S confirmed that personal data stolen includes names, addresses, and order histories.
- No usable payment information or passwords were compromised during the cyber-attack.
- The attack has led to a significant disruption of M&S’s online sales, affecting product availability in stores.
- M&S is collaborating with cybersecurity experts and has reported the incident to authorities.
- Customers are advised that they will need to reset their passwords when logging in next.
Why should I read this?
If you shop with Marks & Spencer or care about data security, this article is essential reading. With data breaches becoming alarmingly common, it’s important to know how your favourite brands are protecting your personal information. Plus, understanding M&S’s response can highlight best practices in corporate crisis management. We’ve done the homework for you—don’t miss these vital details!