M&S says hackers gained access to customer data in April cyberattack
This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily Cybersecurity Dive newsletter.
Marks and Spencer Group has begun notifying customers that hackers accessed some of their data in an April cyberattack, according to a trading update released Tuesday.
The British retailer said the information does not include 'usable payment or card details,' which it does not store on its own systems, nor any password information.
However, customers will be prompted to reset their passwords the next time they visit M&S online or attempt to log in to their accounts, according to the update from CEO Stuart Machin. The company has shared information about how to remain safe online, according to the update.
M&S is one of three major U.K. retailers — along with the famed Harrods department store and the supermarket chain Co-op — to be targeted in a recent cyberattack spree by highly skilled hackers. The notorious cybercrime group Scattered Spider has been linked to the attack, although a separate group called DragonForce has claimed credit for the intrusions.
The attacks disrupted online purchases and impacted some store inventories.
The U.K.'s National Cyber Security Centre issued a statement earlier this month confirming that it was working with the retailers to get a better understanding of the attacks. NCSC CEO Richard Horne described the incidents as a wakeup call, and officials released guidance for how to mitigate future ransomware attacks.
In a note to customers from Jayne Wall, M&S's operations director, the company said the stolen customer information could include basic contact details, dates of birth and online order histories.
Payment information might have been stolen, the company said, but detailed payment card data would be masked and would, therefore, be unusable. The stolen information could also include customer reference numbers for M&S credit card or Sparks Pay holders, according to a frequently asked questions page.
Customers were warned to be on alert for fraudulent calls, emails or text messages claiming to be from the retailer.
Despite the lack of actionable payments information, customers should remain vigilant about hackers potentially abusing the additional personal details, according to Matt Hull, head of threat intelligence at NCC Group.
'Despite the absence of financial data or passwords, threat actors could potentially use the stolen information to launch targeted social engineering attacks,' Hull said. 'Stay vigilant for phishing messages pretending to be from M&S or other companies you've dealt with.'
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
36 minutes ago
- Yahoo
Stocks slide, oil and gold jump after Israel strikes Iran
By Kevin Buckland TOKYO (Reuters) -Stocks dived in early Asian trade on Friday, led by a selloff in U.S. futures while safe havens like gold and the Swiss franc climbed along with crude oil prices on news that Israel had conducted a military strike on Iran. U.S. S&P e-mini futures slumped 1.1% as of 0018 GMT and Nasdaq futures skidded 1.3%. Japan's Nikkei lost 1% and South Korea's KOSPI slipped 0.6%. Most other regional markets had yet to open. Brent crude jumped about 5% to $72.76 per barrel. Gold added 0.8% to $3,410 per ounce. The Swiss franc gained about 0.5% to 0.8060 per U.S. dollar, and fellow safe haven the yen appreciated 0.4% to 142.89 per dollar. Israel has begun carrying out strikes on Iran, two U.S. officials told Reuters on Thursday, adding there was no U.S. assistance or involvement in the operation.
Yahoo
44 minutes ago
- Yahoo
100,000 electric vehicle charging points to be installed with £381m funding
Some 100,000 street-side electric vehicle (EVs) charging points will be installed across England as a result of £381 million funding, ministers have said. The cash aims to help the uptake of electric cars among motorists who do not have their own driveways and charging points. The new charging points come on top of 80,000 already installed publicly across the UK, and tens of thousand more installed privately. Transport minister Lilian Greenwood said: 'This Government is powering up the EV revolution by rolling out a charge point every 29 minutes, and our support to roll out over 100,000 local charge points in England shows we're committed to making even more progress. 'We're delivering our Plan for Change by investing over £4 billion to support drivers to make the switch, while backing British car makers through international trade deals – creating jobs, boosting investment and securing our future.' The money comes from the Government's Local Electric Vehicle Infrastructure fund, which helps councils to instal new EV charging points. Meanwhile, in a sign of growing market confidence in EVs, London-based firm Believ has secured £300 million to roll out charging points across the UK.
New York Post
an hour ago
- New York Post
Dow rebounds as investors shrug off Trump threats of unilateral tariffs
Stocks staged a late rebound Thursday despite renewed trade tensions after President Trump threatened to impose unilateral tariffs on key US trading partners. The Dow Jones Industrial Average dropped more than 230 points, before finishing up 101 points, or 0.2% as investors reacted favorably to more tame inflation data. The S&P 500 and Nasdaq Nasdaq climbed 0.4% and 0.2%, respectively . The small-cap Russell 2000 declined, losing 0.4%. 3 President Donald Trump said he plans to unilaterally impose tariffs on dozens of trading partners, reviving concerns about a global trade war and sending a jolt through financial markets. Shutterstock Meanwhile, the CBOE Volatility Index (VIX), Wall Street's 'fear gauge,' spiked more than 5%, signaling rising investor unease. The market downturn came hours after Trump, speaking Wednesday evening at the John F. Kennedy Center for the Performing Arts in Washington, confirmed that his administration intends to send letters to US trade partners in the coming weeks to formally establish new tariff terms. 'We're going to be sending letters out in about a week and a half, two weeks, to countries, telling them what the deal is,' Trump said. 'At a certain point, we're just going to send letters out. And I think you understand that, saying this is the deal, you can take it or leave it.' Trump's remarks come ahead of a July 9 deadline, when the White House is expected to move forward with increased tariffs on a wide range of imports unless new trade agreements are secured. 3 The S&P 500 is less than 2% off its record. AP The president has previously floated similar timeframes, sometimes delaying or altering plans, but Thursday's selloff suggests investors are bracing for concrete action. In April, Trump proposed across-the-board tariff hikes but put them on hold for 90 days following a steep market decline. Since then, the administration has finalized only a narrow trade framework with the United Kingdom and a temporary tariff truce with China. That truce is now under pressure. Officials from Washington and Beijing met in London earlier this week for high-stakes negotiations after each side accused the other of breaching terms. Trump said Thursday that the US–China framework would include rare earth and magnet exports from China, in exchange for the US loosening restrictions on Chinese student visas. 3 In April, Trump proposed across-the-board tariff hikes but put them on hold for 90 days following a steep market decline. JOHN G MABANGLO/EPA-EFE/Shutterstock When asked whether he might extend the July 9 deadline to allow more time for deals, Trump said, 'But I don't think we're gonna have that necessity.' Trump has shifted his strategy away from blanket multilateral negotiations and is now focused on bilateral deals with countries such as India, Japan, South Korea and members of the European Union. Still, Commerce Secretary Howard Lutnick noted Thursday that negotiations with the EU have been difficult, pointing to the complexity of dealing with a 27-nation bloc. 'It's frustrating,' he said. With Trump reaffirming his tariff plans and few trade deals finalized, Thursday's sharp losses suggest markets are now pricing in the real possibility of a broader economic confrontation in the weeks ahead. The Post has sought comment from the White House.
