M&S cyber attack - everything we know so far and when online orders might return
The supermarket giant M&S this week revealed that the Easter weekend cyber attack is expected to cost the company around £300million
Marks and Spencer has warned that ongoing disruption from its cyber attack last month could last until July. The supermarket was targeted last month on Easter weekend but shoppers are still currently unable to order from M&S online.
The supermarket this week revealed the cyber attack is expected to cost the company around £300million. Customer data, which could have included names, email addresses, addresses and dates of birth, was also taken by the hackers.
Here we explain what happened and what it all means for M&S shoppers.
What happened?
The retailer first noticed 'suspicious activity' around its IT systems during the Easter weekend. The incident affected some payments, including contactless, while click and collect orders were impacted as well.
Its logistics and distribution systems were also disrupted, resulting in some empty shelves in stores. Most of these issues were sorted relatively quickly - but online orders on the M&S website remain paused for now.
Who is behind the cyber attack?
It has been reported that the cyber attack is being linked to hacking group Scattered Spider - with some of the hackers believed to be just teenagers.
Paul Foster, head of the National Crime Agency national cyber-crime unit, told the BBC: "We are looking at the group that is publicly known as Scattered Spider, but we've got a range of different hypotheses and we'll follow the evidence to get to the offenders."
M&S chief executive Stuart Machin told reporters that hackers gained access to its IT systems through a third party after 'human error' rather than a weakness in the system.
He said: 'Unable to get into our systems by breaking through our digital defences, the attackers did try another route, resorting to that term social engineering by entering through a third party.'
When will stores be back to normal?
M&S stores are largely back to normal in terms of stock availability, but online orders remain paused around four weeks after they were first halted.
Shoppers can still browse M&S products online - you just can't make a purchase. M&S expects the disruption could continue into July.
Mr Machin said that around 85% of its range would be first made available online again, as it restores different parts of its online distribution network.
Do M&S shoppers need to worry?
The company has confirmed that personal customer data, including names, email addresses, addresses and dates of birth, were stolen in the attack.
Because of this, it is advised that shoppers take extra caution if they are contacted by someone who claims to be from M&S. In an email to shoppers, Jayne Wall, operations director at M&S, said there is no evidence that this data has been shared.
The data also does not include useable card or payment details, or any account passwords. The supermarket said shoppers will still be prompted to change their password next time they log in to their M&S account as a matter of caution.
M&S said: "You do not need to take any action, but you might receive emails, calls or texts claiming to be from M&S when they are not, so do be cautious.
"Remember that we will never contact you and ask you to provide us with personal account information, like usernames, and we will never ask you to give us your password."
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
The Sun
an hour ago
- The Sun
The Range is selling a patio heater that's ‘perfect for cool summer evenings' & it's super cheap to run
THE Range is selling a stylish patio heater which will come in handy this summer. The product is described as being "perfect for cool summer evenings" and has an affordable price tag. British summers are notorious for unpredictable weather which could go from hot temperatures to rain in minutes. Evenings can be especially chilly but Brits will want to make the best out of their gardens and BBQ season. The Range has a perfect patio heater for nights when you want to stargaze or gather with friends on a patio. The Table top patio heater is retailing for only £35.89 and could even be purchased in instalments. The heater comes with a cool-touch design and can be easily moved around to any location. According to the Range, the product is cheap to run with 10,000 hours run time with the carbon fibre bulbs. And when the summer is over, it won't be collecting dust in a shed as you can still use it indoors during cold winter days. If you want to cosy up with a book outside, have a dinner under the stars or chat with friends while staying warm and comfortable, you need to hurry up before it sells out. The heater can be purchased in-store but the delivery options have already sold out. B&M shoppers are giving their gardens a summer glow up with £12 bargain The Range is also selling a charming £2.99 buy that is perfect for brightening up your garden. This comes as one customer recently saved an eye-watering £344.60 after picking up some stylish wooden furniture pieces. Shoppers also can't get enough of another cute garden accessory that comes with five star reviews and has been slashed to £44. The Florence arched wall mirror, which can be hung up indoors or outdoors, has been reduced by 20% from £55. How to bag a bargain SUN Savers Editor Lana Clements explains how to find a cut-price item and bag a bargain… Sign up to loyalty schemes of the brands that you regularly shop with. Big names regularly offer discounts or special lower prices for members, among other perks. Sales are when you can pick up a real steal. Retailers usually have periodic promotions that tie into payday at the end of the month or Bank Holiday weekends, so keep a lookout and shop when these deals are on. Sign up to mailing lists and you'll also be first to know of special offers. It can be worth following retailers on social media too. When buying online, always do a search for money off codes or vouchers that you can use and are just two sites that round up promotions by retailer. Scanner apps are useful to have on your phone. app has a scanner that you can use to compare prices on branded items when out shopping. Bargain hunters can also use B&M's scanner in the app to find discounts in-store before staff have marked them out. And always check if you can get cashback before paying which in effect means you'll get some of your money back or a discount on the item.
BBC News
2 hours ago
- BBC News
M&S hackers sent abuse and ransom demand directly to CEO
An abusive email sent by the Marks & Spencer hackers to the retailer's boss gloating about the hack and demanding payment has been seen by the message to M&S CEO Stuart Machin - which was in broken English - was sent on the 23 April from the hacker group called DragonForce using the email account of an email confirms for the first time that M&S has been hacked by the ransomware group – something that M&S has so far refused to acknowledge."We have marched the ways from China all the way to the UK and have mercilessly raped your company and encrypted all the servers," the hackers wrote."The dragon wants to speak to you so please head over to [our darknet website]." The extortion email was shown to the BBC by a cyber security blackmail message, which includes the n-word, was sent to the M&S CEO and seven other well as bragging about installing ransomware across the M&S IT system to render it useless, the hackers say they have stolen the private data of millions of three weeks later customers were informed by the company that their data may have been email was sent apparently using the account of an employee from the Indian IT giant Tata Consultancy Services (TCS) - which has provided IT services to M&S for over a Indian IT worker based in London has an M&S email address but is a paid TCS appears as though he himself was hacked in the has previously said it is investigating whether it was the gateway for the cyber company has told the BBC that the email was not sent from its system and that it has nothing to do with the breach at M&S.M&S has declined to comment entirely. 'We can both help each other' A darknet link shared in the extortion email connects to a portal for DragonForce victims to begin negotiating the ransom fee. This is further indication that the email is the link – the hackers wrote: "let's get the party started. Message us, we will make this fast and easy for us."The criminals also appear to have details about the company's cyber insurance policy too saying "we know we can both help each other handsomely : ))".The M&S CEO has refused to say if the company has paid a ransom to the ended the email with an image of a dragon breathing fire. The email confirms for the first time the link between M&S's hack and the ongoing Co-op cyber attack, which DragonForce have also claimed responsibility two hacks - which began in late April - have wrought havoc on the two retailers. Some Co-op shelves were left bare for weeks, while M&S expects its operations to be disrupted until we now know that DragonForce is behind both, it is still not clear who the actual hackers offers cyber criminal affiliates various services on their darknet site in exchange for a 20% cut of any ransoms can sign up and use their malicious software to scramble a victim's data or use their darknet website for their public has appeared on the criminal's darknet leak site about either Co-op or M&S but the hackers told the BBC last week that they were having IT issued of their own and would be posting information "very soon."Some researchers say DragonForce are based in Malaysia, while others say Russia. Their email to M&S implies that they are from has been mounting that a loose collective of young western hackers known as Scattered Spider might be the affiliates behind the hacks and also one on Spider is not really a group in the normal sense of the word. It's more of a community which organises across sites like Discord, Telegram and forums – hence the description "scattered" which was given to them by cyber security researchers at Scattered Spider hackers are known to be teenagers in the US and UK's National Crime Agency said in a BBC documentary about the retail hacks, that they are focusing investigations on the BBC spoke to the Co-op hackers who declined to answer whether or not they were Scattered Spider. "We won't answer that question" is all they of them said they wanted to be known as "Raymond Reddington" and "Dembe Zuma" after characters from US crime thriller The Blacklist which involves a wanted criminal helping police take down other criminals on a a message to me, they boasted: "We're putting UK retailers on the Blacklist."There have been a series of smaller cyber attacks on UK retailers since but none as impactful of disruptive as those on Co-op, M&S and Harrods. DragonForce offers cyber criminal affiliates various services on their darknet site in exchange for a 20% cut of any ransoms can sign up and use their malicious software to scramble a victim's data or use their darknet website for their public has appeared on the criminal's darknet leaksite about either Co-op or M&S but the hackers told the BBC they were having IT issues of their own and would be posting information "very soon."Some researchers say DragonForce are based in Malaysia, while others say Russia. Their email to M&S implies that they are from the early stages of the M&S hack, unknown sources told cyber news site Bleeping Computer that evidence is pointing to Scattered UK's national cyber-crime unit has confirmed to the BBC that the group is one of their key for the hackers I spoke to on Telegram, they declined to answer whether or not they were Scattered Spider. "We won't answer that question" is all they said. Sign up for our Tech Decoded newsletter to follow the world's top tech stories and trends. Outside the UK? Sign up here.
The Independent
4 hours ago
- The Independent
Asian shares mostly gain ahead of Friday's US jobs report
Asian shares were mostly higher Friday ahead of an update on the U.S. job market that will offer insights into how the economy is faring. U.S. futures edged higher and oil prices fell. Tokyo 's Nikkei 225 index rose 0.5% to 37,730.67, while the Kospi in South Korea jumped 1.5% to 2,812.05. Hong Kong's Hang Seng lost 0.4% to 23,817.10 and the Shanghai Composite index edged 0.1% higher, to 3,385.91. Australia's S&P/ASX 200 was nearly unchanged at 8,536.40. India's Sensex gained 0.6%. On Thursday, the S&P 500 fell 0.5% to 5,939.30 for its first drop in four days. After sprinting through May and rallying within a couple good days' worth of gains of its all-time high, the index at the center of many 401(k) accounts has lost momentum. The Dow Jones Industrial Average dropped 0.3% to 42,319.74, and the Nasdaq composite sank 0.8% to 19,298.45. The U.S. Labor Department is due to report how many more jobs U.S. employers created than destroyed during May. The expectation on Wall Street is for a slowdown in hiring from April. A resilient job market has been one of the linchpins that's propped up the U.S. economy, and the worry is that all the uncertainty created by President Donald Trump's on-and-off tariffs could push businesses to freeze their hiring. A report on Thursday said more U.S. workers applied for unemployment benefits last week than economists expected. The number remains relatively low compared with history, but it still hit its highest level in eight months. The data came as Procter & Gamble, the giant behind such brands as Pampers diapers and Cascade dish detergent, said it will cut up to 7,000 jobs over the next two years. Its stock fell 1.9%. The day's heaviest weight on the market was Tesla, which tumbled 14.3%. It's lost nearly 30% of its value so far this year as CEO Elon Musk's relationship with Trump sours amid a disagreement over the president's signature bill of tax cuts and spending. In after-hours trading Tesla gained 2.2%. Brown-Forman, the company behind Jack Daniel's and Woodford Reserve, dropped 17.9% for its worst day since it began trading in 1972. Hopes that Trump will lower his tariffs after reaching trade deals with other countries have been among the main reasons the S&P 500 has rallied back so furiously since dropping roughly 20% from its record two months ago. It's now back within 3.3% of its all-time high. Trump boosted such hopes Thursday after saying he had 'a very good phone call' with China's leader, Xi Jinping, about trade and that 'their respective teams will be meeting shortly at a location to be determined.' It's an easing of tensions after the world's two largest economies had earlier accused each other of violating the agreement that had paused their stiff tariffs against each other, which threatened to drag the economy into a recession. Markets took the latest signs of detente with Beijing coolly, given that nothing is assured in Trump's on-and-off rollout of tariffs. Among Wall Street's winners was MongoDB, which jumped 12.8% after the database company likewise delivered a stronger profit than analysts expected. Circle Internet Group, the U.S.-based issuer of one of the most popular cryptocurrencies, surged 168.5% in its first day of trading on the New York Stock Exchange. The yield on the 10-year Treasury held steady at 4.40%, up from 4.37% late Wednesday after tumbling from 4.46% the day before. Yields dropped so sharply on Wednesday as expectations built that the Federal Reserve will need to cut interest rates later this year to prop up an economy potentially weakened by tariffs. In other dealings early Friday, U.S. benchmark crude oil lost 21 cents to $63.16 per barrel. Brent crude, the international standard, fell 18 cents to $65.16 per barrel. The U.S. dollar rose to 143.77 Japanese yen from 143.49 yen. The euro fell to $1.1438 from $1.1448.
