M&S says hackers gained access to customer data in April cyberattack
Marks and Spencer Group has begun notifying customers that hackers accessed some of their data in an April cyberattack, according to a trading update released Tuesday.
The British retailer said the information does not include 'usable payment or card details,' which it does not store on its own systems, nor any password information.
However, customers will be prompted to reset their passwords the next time they visit M&S online or attempt to log in to their accounts, according to the update from CEO Stuart Machin. The company has shared information about how to remain safe online, according to the update.
M&S is one of three major U.K. retailers — along with the famed Harrods department store and the supermarket chain Co-op — to be targeted in a recent cyberattack spree by highly skilled hackers. The notorious cybercrime group Scattered Spider has been linked to the attack, although a separate group called DragonForce has claimed credit for the intrusions.
The attacks disrupted online purchases and impacted some store inventories.
The U.K.'s National Cyber Security Centre issued a statement earlier this month confirming that it was working with the retailers to get a better understanding of the attacks. NCSC CEO Richard Horne described the incidents as a wakeup call, and officials released guidance for how to mitigate future ransomware attacks.
In a note to customers from Jayne Wall, M&S's operations director, the company said the stolen customer information could include basic contact details, dates of birth and online order histories.
Payment information might have been stolen, the company said, but detailed payment card data would be masked and would, therefore, be unusable. The stolen information could also include customer reference numbers for M&S credit card or Sparks Pay holders, according to a frequently asked questions page.
Customers were warned to be on alert for fraudulent calls, emails or text messages claiming to be from the retailer.
Despite the lack of actionable payments information, customers should remain vigilant about hackers potentially abusing the additional personal details, according to Matt Hull, head of threat intelligence at NCC Group.
'Despite the absence of financial data or passwords, threat actors could potentially use the stolen information to launch targeted social engineering attacks,' Hull said. 'Stay vigilant for phishing messages pretending to be from M&S or other companies you've dealt with.'
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
10 minutes ago
- Yahoo
S&P 500 sinks 1.6%, its worst drop since May, following surprisingly weak hiring numbers and Trump's tariff rollout
NEW YORK (AP) — S&P 500 sinks 1.6%, its worst drop since May, following surprisingly weak hiring numbers and Trump's tariff rollout. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Boston Globe
11 minutes ago
- Boston Globe
Two pubs claim to be London's oldest riverside pub. Which one is right?
The Mayflower is named after the Pilgrim Mayflower ship, which set sail from the site in 1620 to begin its journey to America. Though it only got its name in 1957, it is said to have some of the ship's original timbers incorporated into its structure. Get Starting Point A guide through the most important stories of the morning, delivered Monday through Friday. Enter Email Sign Up Today, pubgoers who can prove direct descent from one of the Mayflower passengers can sign its 'Descendants Book.' Advertisement Every night, tourists step out of black cabs at the doors of the two pubs, trading the capital's modern skyscrapers for the storied streets of London's East End, lined with quaint terraced houses and red brick warehouses. In both pubs, they enter spaces where old paintings hanging on dark paneled walls and other mementos of their histories seem to leave the contemporary world behind. 'There really is a feeling that you might have stepped back in time and could be drinking beer with sailors or pirates or anybody from any Dickens novels really,' said Emily Godwin, a Londoner who has been to both. She spoke while sipping a pint of lager with friends at the Prospect on a recent summer evening. Advertisement The Prospect boasts a pewter bar — the longest of its kind in Britain — where the infamous 'Hanging Judge Jeffreys' is said to have watched the many hangings that took place at the nearby 'Execution Dock.' Early on, the pub was known as the Devil's Tavern due to its association with thieves and smugglers. A hanging noose outside serves as a reminder of the pub's grisly history. It 'feels like such a pocket of history in London,' Godwin said. 'So much of London's East End feels very new and trendy, and the Prospect feels like it's barely changed.' British pubs have always been at the center of social life, with locals coming together over a pint, even in times of war and economic hardship. But the last five years have been challenging for the industry as pubs contended with the COVID-19 pandemic and rising costs. This year, an estimated 378 venues are set to shutter across England, Wales, and Scotland, according to the British Beer and Pub Association. 'When a pub closes, it puts people out of a job, deprives communities of their heart and soul, and hurts the local economy,' said Emma McClarkin, head of the BBPA. Pubs across the country have been forced to find new ways to attract customers. History is a big draw for pubgoers, with a trip to a traditional British pub coming in high on tourists' London bucket lists, raising the stakes of the Prospect and the Mayflower's competition. Advertisement The Prospect claims it was established in 1520, with its original flagstone surviving an arson attack in 1666 — the same year as the Great Fire of London. The pub was outside of the city limits at that time and was not affected by the conflagration that gutted the medieval city. Justin Billington, assistant manager at the Prospect, said some people date the pub to its full reconstruction in 1774 after the 1666 fire. But he doesn't see it that way, noting that it operated continuously. The day after the fire, the workers rolled out a barrel of beer that had survived the flames, and locals showed up with their tankards, drinking vessels, and enjoyed a drink on the spot. There were several reconstructions in the pub's subsequent history, but none withstood the salt water and shifting foundations of the Thames, Billington explained. Not, that is, until 1774 when the retired captain of a merchant ship called 'The Prospect' rebuilt it using the ship. 'This rebuild held and continues to hold on for dear life,' he said. If the pub was actually established in 1774, that would make the Mayflower — established in the 16th century — older. But there are no hard feelings between the pubs as Billington described their competition as a 'loving rivalry.' 'We compete against each other to be the oldest, and to serve the best food and drink,' he said. But the question remains: How can either pub definitively claim the title? Unlike the title of the 'Oldest pub in England,' held by the Porch House in southern England, which is said to date to the 10th century, there is no official certification for the oldest pub in London. Advertisement Guinness World Records said it has not formally awarded the title because of the complexities created by numerous name changes, relocations, and reconstructions. 'There are lots of very old pubs that might make a claim to being oldest, but it could be contested because it could be argued they weren't always in 'London,'' English historian and author Jacob Field said. 'Many pubs have changed name over time, making it hard to claim they are the oldest.'
NBC News
12 minutes ago
- NBC News
Dow closes 500 points lower Friday as weak jobs data and new tariffs incite sell-off
Stocks tumbled on Friday to kick off August trading as investors weighed stark signs of a weakening economy and President Donald Trump's modified tariff rates. The Dow Jones Industrial Average dropped 542.40 points, or 1.23%, closing at 43,588.58. The S&P 500 shed 1.60% to end at 6,238.01, while the Nasdaq Composite dipped 2.24% and settled at 20,650.13. The July jobs report showed nonfarm payrolls expanded by 73,000 last month, well beneath the consensus estimate from economists polled by Dow Jones that called for a 100,000 increase to payrolls. Prior months were significantly revised down. June job growth totaled just 14,000, down from 147,000. The May count came down to 19,000 from 125,000, signaling the labor market has been weakening for a while now. Bank stocks were sharply lower on fears that a slowing economy could hit loan growth. Shares of JPMorgan Chase pulled back more than 2%, while Bank of America and Wells Fargo fell more than 3% each. GE Aerospace and Caterpillar dipped nearly 1% and 2%, respectively. 'What we're seeing is concern about growth that comes at a time when market multiples have become quite elevated,' said Thierry Wizman, global FX and rates strategist at Macquarie Group. 'It's also indicative of a late summer growth scare, but you can layer that a little bit with that the idea that the doves on the FOMC ended up being correct, which lends to the idea that the Fed is late.' The numbers increased the odds that the Fed could act sooner than expected to cut rates and prop up the economy, a notion that helped stem stock losses. Traders place the likelihood of a September rate cut at roughly 86% after the jobs figures, according to CME fed futures trading. That's a reversal from Wednesday, when the odds plummeted after Fed Chair Jerome Powell signaled the central bank needs to wait and evaluate the impact of tariffs on inflation before cutting. Trump's overnight rollout of updated duties that ranged from 10% to 41% also weighed on sentiment. Goods that have been transshipped in a bid to avoid the tariffs will face another 40% levy, according to the White House. Canada, one of the U.S.'s biggest trading partners, will now have a 35% levy. That's up from 25%. 'Traders are locking in gains as tech earnings fade, macro risks grow, and seasonality turns negative. Breadth is narrowing, valuations are stretched, and defensive positioning is quietly building,' said Joseph Cusick, portfolio specialist at Calamos Investments. A sell-off in tech giants also weighed on stocks Friday. Shares of Amazon tumbled more than 8% after the e-commerce giant provided light operating income guidance for the current quarter. Apple stock slipped 2.5%. The major averages also suffered a losing week, with the S&P 500 dropping 2.4% for its worst weekly performance since May 23, and the Dow tumbling 2.9% to post its worst week since April 4. The Nasdaq lost 2.2% in the period.
