On April 23, 2025, M&S faced significant disruptions due to a cyber incident that affected their UK operations over the Bank Holiday weekend. Customers experienced difficulties using contactless payments and click-and-collect services, prompting an apology from CEO Stuart Machin. M&S confirmed that while stores remained open, the impact on shopping experiences was notable, raising questions about the retailer’s cybersecurity resilience.
Key Points
- M&S customers reported issues with contactless payments and click-and-collect services due to a cyber incident.
- CEO Stuart Machin communicated with customers, outlining the situation and apologising for the disruptions.
- While in-store operations continued, shoppers faced long queues and overwhelmed checkouts.
- This incident follows a previous technical issue in 2024, raising concerns about M&S’s cyber resilience.
- Experts warn that high-profile attacks often lead to increased phishing attempts targeting affected customers.
- Leadership and communication from M&S have been praised as essential for maintaining customer trust during such incidents.
Why should I read this?
This article dives into a notable cybersecurity breach faced by Marks & Spencer, a company many rely on for everyday shopping. It’s a reminder that even established retailers are not immune to cyber threats, and understanding these incidents can help you stay informed and safe. We’ve done the legwork for you, so you don’t have to fret about the details!