M&S confirms when online shopping will resume after cyber attack caused retail chaos
It's the first major update following the retailer's decision to "halt" all online shopping systems last month.
M&S has just giving its first major update weeks after it was crippled in a cyber attack. The high street firm has officially confirmed its online shopping will be returning "this week".
In a social media announcement this morning (June 10), the beloved retailer has confirmed that its bestselling fashion ranges would once again be available for home delivery for shoppers based in Scotland, England and Wales.
It has also been further confirmed that the firm will be looking to restart deliveries to Northern Ireland and its Click and Collect service in the "coming weeks."
The full update read: "We are bringing back online shopping this week. A selection of our bestselling fashion ranges will be available for home delivery to England, Scotland and Wales.
More of our fashion, home and beauty products will be added every day and we will resume deliveries to Northern Ireland and Click and Collect in the coming weeks. Thank you sincerely for your support and for shopping with us."
This marks the first time that M&S' systems have been back up and running after it was targeted in a ransomware attack, with all of its online operations being temporarily halted on Friday, April 25.
It has been reported that the cyber incident was the work of a notorious hacking gang known as Scattered Spider, a group that has been attributed to the infamous MGM and Caesar's Entertainment hacking scandal back in 2023.
We also previously reported that the cyber attack didn't just affect its online shopping systems, as shoppers began to notice limited stock availability on Food Hall shelves, with several meal deals being "halted" during the incident.
With all of its online shopping systems, including contactless pay, being impacted, it is believed that the iconic high street retailer has made a loss off around £300million over the past few weeks.
Over £1.2billion has also been wiped off the market value, with reports suggesting that M&S was said to be losing up to £3.5million a day in online revenue.
The incident also placed the firm at the centre of a multi-million pound lawsuit by Scottish customers after it was officially revealed that personal data was stolen as part of the attack.
On May 13, it was confirmed by M&S in an update on social media that "some personal customer information was taken", although it was believed that this did not include useable card or payment details, or any account passwords.
Join the Daily Record WhatsApp community!
Get the latest news sent straight to your messages by joining our WhatsApp community today.
You'll receive daily updates on breaking news as well as the top headlines across Scotland.
No one will be able to see who is signed up and no one can send messages except the Daily Record team.
All you have to do is click here if you're on mobile, select 'Join Community' and you're in!
If you're on a desktop, simply scan the QR code above with your phone and click 'Join Community'.
We also treat our community members to special offers, promotions, and adverts from us and our partners. If you don't like our community, you can check out any time you like.
To leave our community click on the name at the top of your screen and choose 'exit group'.
If you're curious, you can read our Privacy Notice.
However, information that could have been obtained by the hackers including the likes of telephone numbers, home addresses, dates of birth and online ordering histories of millions of people.
M&S' return to online shopping comes after it was the first in a slew of retailers who were hit by ransomware attacks over the past few months.
The Co-op also admitted last month that cyber criminals had infiltrated its IT systems, with the hackers, going by the name DragonForce, said to have gained access to the personal details of millions of customers signed up to its loyalty scheme.
Hackers also targeted Harrods, with the luxury retailer confirming that "restricted" internet access to its sites after experiencing attempts from an unknown source trying to gain access to its systems.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
The National
34 minutes ago
- The National
Why Scotland joining Efta or EEA is infinitely preferable to the EU
Since then, there has been an understandable desire expressed by many to rejoin the EU after independence, though how that is delivered remains to be seen. However, the debate thus far has not fully addressed other options: notably membership of Efta/the EEA, at least in the medium term. Efta is the European Free Trade Association. It was formed in 1960 as kind of an economic waiting room prior to EU accession. The UK was a member of Efta before 1973 when it passed legislation to become a member of the EU. Switzerland, Norway, Iceland, and Lichtenstein never left the waiting room, and currently comprise Efta. READ MORE: These key economic truths show how independent Scotland and Wales can succeed The EEA is the European Economic Area. This was a treaty signed in 1992 which enabled all the EU states and the Efta members (excluding Switzerland) to be part of the single market. This requires all members of the EEA to respect the four freedoms of movement – workers, goods, services, and capital. Switzerland has a series of bilateral treaties with the EU under which it must abide by these four freedoms, but it is much more complicated than EEA membership. I have attended two biennial seminars of the Efta/EEA council in Brussels, and was struck by the positive engagement between all EEA members, Efta and the EU. There is this slogan against Efta membership that Scotland would be 'rule takers, not rule makers'. This ignores the fact that within the EEA treaty, all EEA states must be closely consulted on any change in EU law pertaining to the EEA agreement. On many occasions, Efta/EEA members engaged in the process early and had a positive formative influence on the law. READ MORE: Assa Samake-Roman: What if we are wrong about reasons for rise in far-right support? While Efta/EEA members do not have a vote on laws, I asked Efta members if they had ever had EU laws forced on them against their will. They couldn't think of any such occasions. Many smaller EU states feel they have no influence at all. Upon a 'democratic event' affirming majority support for independence, Scotland could apply to join Efta. While I cannot speak on their behalf, I can safely say there is great support among Efta officials for Scottish membership. The three Efta/EEA members would then lobby to get an independent Scotland into the EEA. Again, I cannot speak on their behalf, but when I last spoke with Efta officials they saw no impediment to Scotland joining Efta and the EEA within a few short months. Compare this to the EU accession process. This could easily take 10 years. EU law (the acquis) comprises 35 chapters, all of which would need to be reflected in Scots law, and Scotland would have to demonstrate that it has the institutions in place to apply EU law. It doesn't, because the 'Scottish' civil service is merely an appendage of the UK state. File photo of a Yes for EU rally at the Scottish parliamentAll 27 EU member states have veto power at any stage in the process. Think Spain and Catalonia. At the recent SSRG conference in Dunfermline, we held a panel on Efta/EEA membership. I was in touch with @YesforEU, and asked if any known prominent advocate for Scotland in the EU would be willing to speak. We got zero responses. There seems to be a contrived prevailing assumption that, because Scots voted to remain in the EU in 2016, rejoining the EU after independence would be easy and preferable to Efta membership. I was in touch with a well-known purportedly pro-indy corporate lobbyist, who after changing his mind, assured me that the EU membership 'polled' better than Efta/EEA, therefore independence should be automatically linked with EU membership. However, that assumes Scots are well-informed about the pros and cons of membership of both, and can make an informed decision. This debate has yet to be held. This ignores the many independence supporters who, despite the Scottish vote to remain in 2016, take a dim view of EU membership. As an American with UK citizenship through my Scottish father, I have been able to carve out a career as a university teacher in France. When I came to France in 1995, I felt a genuine optimism towards the economic objectives of the EU, and have benefited from it. My view of the EU has changed drastically since then. The musician Frank Zappa famously remarked that '[US] Politics is the entertainment division of the military-industrial complex'. Regrettably, the same can increasingly be said of the EU and Nato, which are becoming indistinguishable. At the same time, the EU is increasingly authoritarian. Whether you agree with them or not, look at how Viktor Orban in Hungary and Robert Fico in Slovakia have been threatened because of their opposition to the EU approach to Russia and Ukraine. It also managed to get Calin Georgescu eliminated in Romania as a presidential candidate because he dissented from Ursula Von der Leyen's orthodoxy. Kaja Kallas is the High Representative of the European Union for Foreign Affairs and Security PolicyAnd don't get me going on the incompetence and stupidity of Kaja Kallas, the EU foreign minister. She is openly Russophobic, speaks about defeating and carving up Russia, and laments that if the EU cannot defeat Russia, how can it defeat China? Does Scotland want to join THAT EU? What happens when that bile is directed at Scotland if it dissents from EU-manufactured consent? Maybe, over time, the EU leadership will regain some sanity, get back to its original economic purpose and stop violating its members' sovereignty and cultures. Until then, Scotland should join Efta/the EEA, recoup and exercise its popular sovereignty, and let the EU sort itself out. Whether it does or not, Scotland will be much better off as an Efta/EEA member, and will be warmly welcomed. Later, there is no obstacle to joining the EU, if that is what Scots democratically decide. Dr Mark McNaught is the founder of the Scottish Sovereignty Research Group and Maître de Conférences at the University of Rennes 2, France
Edinburgh Live
an hour ago
- Edinburgh Live
Edinburgh restaurant that 'won't break the bank' crowned Scotland's best
Our community members are treated to special offers, promotions and adverts from us and our partners. You can check out at any time. More info An Edinburgh restaurant has been crowned the best in Scotland, and it 'won't break the bank'. Lyla, which sits on Royal Terrace, was awarded its first Michelin star earlier this year. After opening in 2023, they've made their mark on the capitals culinary scene. Now, they've been named as the best restaurant in Scotland at the National Restaurant Awards, reports the Scottish Daily Express. It finished 17th in Britain overall in the list, which was topped for the first time by The Ritz in London. But unlike many of the restaurants featured, a visit to Lyla won't break the bank. A five-course tasting lunch on a Friday and Saturday can cost as little as £65 while a 10 course tasting menu in the evening is priced at £165 per head. Guests at Lyla start their evening upstairs where they are presented with a bespoke list of apéritifs and Champagnes as well as snacks. You can enjoy stunning views all the way out to the Firth of Forth while you relax before heading downstairs to the main dining area where you can watch your meal being prepared in the open kitchen. Already a multiple-award winner, Lyla helps satisfy a growing appetite for luxury dining in Scotland. VisitScotland this week revealed that online searches for "Michelin star Scotland" have increased by 58% in the last three years, and highlighted Lyla as part of a growing trend. Stuart Ralston, Chef-owner at Lyla, said: "Scotland has a wealth of great produce, from both the sea and land, and our dining scene has been benefiting from this for years. "Now more than ever, there is an increased number of fine dining restaurants that are building on this and highlighting the abundance of Scottish produce, making Scotland an exciting place to dine. Historically, trade increases during the summer months with holidays and the Fringe Festival, but it is important to maintain momentum throughout the year. "The current culinary spotlight means that we are seeing more visitors throughout the year, which is important to keep business going. Luxury dining supports hospitality and food production sectors as a whole - it's about bringing more visitors to Scotland who will then spend money and invest in our economy." Full list of Michelin star restaurants in Scotland
Scotsman
2 hours ago
- Scotsman
Can you afford not to have a cyber insurance policy?
Scott McLuskey helps clients find the cyber insurance policy that's right for them Cyber attacks cost Scottish businesses £386m annually – but most firms still aren't insured, warns Scott McLuskey Sign up to our Scotsman Money newsletter, covering all you need to know to help manage your money. Sign up Thank you for signing up! Did you know with a Digital Subscription to The Scotsman, you can get unlimited access to the website including our premium content, as well as benefiting from fewer ads, loyalty rewards and much more. Learn More Sorry, there seem to be some issues. Please try again later. Submitting... Recent high-profile cyber incidents involving major UK institutions including Marks & Spencer, Harrods, and the Co-op are a stark reminder: no business is immune to attack. I first spoke about the importance of cyber insurance at the inaugural Cyber Scotland Week six years ago, an initiative supported by the Government to promote cyber resilience. Since then, the threat has only accelerated – today, a cyber-attack occurs every 44 seconds in the UK. Advertisement Hide Ad Advertisement Hide Ad Yet despite the scale of risk, many business leaders remain confident that their organisations are protected. Antivirus software, cloud backups, an in-house or outsourced IT Manager and a general belief that they're 'covered' often mask the reality: these measures alone are not enough. It wasn't just a cyber attack, it was an M&S cyber attack that cost millions (Picture: Adobe) Reports surrounding the recent attack on British retail heavyweight M&S suggest that the attack will cost an estimated £300 million and was not the result of poor systems, but of human error – a tale as old as time and the weakest link in any cyber defence strategy. Smaller businesses are also firmly in the firing line. Vodafone estimates Scottish SMEs are losing a combined £386m a year to Cyber Attacks, with 40% of SMEs falling victim last year alone. Costs following an attack can be significant: from forensic investigations, legal advice, regulatory notifications, and PR management, to lost revenue, extortion demands, credit monitoring, and potential lawsuits. The good news is that a cyber insurance policy offers a risk transfer solution to address these costs and assist recovery. Today's leading cyber policies also go beyond simple risk transfer – they include value-added services like vulnerability scans, penetration testing, and employee training. While not a substitute for a dedicated cybersecurity provider, these tools provide vital early protection and peace of mind. Advertisement Hide Ad Advertisement Hide Ad However, buying cyber insurance isn't always straightforward. With over 30 readily available cyber insurers – plus Lloyd's of London – and each provider offering a different proposition with their own minimum cyber security based acceptance criteria, the market can feel impenetrable. Unlike traditional insurance policies, cyber cover is still relatively new, with the first policy written in the late 1990s - the market and crucially insurer's loss data is continually developing. Compare that with buildings insurance, first developed in the wake of the Great Fire of London in the 17th century. As a result, there's wide variation in policy coverage, pricing, and – most importantly – what policyholders need to do to ensure claims are valid. Too often, businesses only realise this after a breach, when it's too late. There are promising signs. Leading providers like CFC Underwriting report a claims payout rate of over 99% and industry-wide improvements are being made in clarity, claims handling, and support services. But challenges remain – particularly for small and medium-sized businesses. Advertisement Hide Ad Advertisement Hide Ad A UK Government report found that 50% of businesses suffered some form of breach in the past year, rising to 70% among medium-sized firms. Yet just over half of all companies have cyber cover. Scotland's economy, built on a vibrant mix of SMEs, family-run firms, and fast-growing tech businesses, is particularly exposed. As the majority of organisations have digitised operations, even modest breaches can have a disproportionate impact – not only on individual companies, but on supply chains, customer trust, and investor confidence across the sector. Cyber resilience is no longer just a technical issue; it's an economic imperative. The Association of British Insurers has also identified a communication gap: cyber insurance is too often presented as a standalone 'product,' when in reality it's an ongoing service that begins before a breach and supports the business throughout. At Monteith, we're working to bridge this gap. We help clients understand their cyber exposure, decode policy language, and choose the right level of cover. Most importantly, we walk our clients through the fine print – ensuring they know exactly what's required to stay compliant, so their insurance delivers when it matters most. Advertisement Hide Ad Advertisement Hide Ad The threat isn't going away. Business leaders must go beyond firewalls and backups. They need to take proactive steps – including securing expert cyber insurance advice – to protect against what is now one of the most persistent and costly risks in modern business.
