Latest news with #RobertCottrill
North Wales Chronicle
22-05-2025
- Business
- North Wales Chronicle
M&S website down as retailer endures lengthy recovery from cyber attack
Visitors to the M&S website are greeted with the message: 'Sorry you can't browse the site currently. We're making some updates and will be back soon.' The site is otherwise unable to be used. The BBC reports the site may be undergoing routine maintenance. M&S has been contacted for comment. M&S halted orders on its website and saw empty shelves after being targeted by hackers around the Easter weekend, and customer personal data, which could have included names, email addresses, postal addresses and dates of birth, was also taken by hackers in the attack. The retail giant said on Wednesday that 'human error' had caused the attack, which is set to cost the firm around £300 million, and chief executive Stuart Machin confirmed disruption could last until July. It came as the company reported a higher-than-expected adjusted pre-tax profit of £875.5 million for the year to March, up 22.2% on the previous year. Robert Cottrill, technology director at digital firm ANS, said it was 'vital' M&S took its time to get system recovery right, in order to ensure security and prevent future incidents. 'M&S appears to be taking the appropriate and necessary steps following the cyber attack, with a likely focus on restoring core systems and recovering critical data,' he told the PA news agency. 'The extended disruption may well be a result of attackers having targeted key infrastructure, which takes time to fully assess, secure and restore. 'Given the scale and complexity of M&S's globally connected operations, the recovery process is understandably meticulous, with multiple interconnected systems requiring scrutiny.' 'It's essential that M&S prioritises a secure and complete recovery over a rapid one. Rushing to bring systems back online without full assurance of their integrity could risk further compromise. 'Ensuring robust security at every layer before resumption is not just sensible – it's vital. 'The major disruption and sales loss M&S has seen following the incident serve as a powerful reminder to all organisations: cybersecurity must be treated as a board-level issue. No business is immune to cyber threats, and those with complex digital ecosystems are particularly vulnerable. 'Effective incident response plans, regular testing and collaboration with cybersecurity experts are critical to minimising disruption. 'But more than that, a proactive approach that includes threat detection, security-by-design principles, and employee awareness is the best defence against increasingly sophisticated attacks.'
South Wales Guardian
22-05-2025
- Business
- South Wales Guardian
M&S website back up for browsing after being taken down overnight
The retail giant had taken the site down in order to carry out updates, with visitors met with the message: 'Sorry you can't browse the site currently. We're making some updates and will be back soon.' It confirmed the site was back up and running early on Thursday morning, but for browsing only. The group said: 'Our website is open for browsing. 'As we work to get things back to normal for our customers we are doing some overnight updates.' M&S has not been able to take online orders on its website since the Easter weekend and was left with empty shelves in many stores after being targeted by hackers in a damaging attack. Customer personal data, which could have included names, email addresses, postal addresses and dates of birth, was also stolen by hackers. The retail group said on Wednesday that 'human error' had caused the attack, which is set to cost the firm around £300 million. Chief executive Stuart Machin confirmed disruption could last until July. It came as the company reported a higher-than-expected adjusted pre-tax profit of £875.5 million for the year to March, up 22.2% on the previous year. Robert Cottrill, technology director at digital firm ANS, said it was 'vital' M&S took its time to get system recovery right, in order to ensure security and prevent future incidents. 'M&S appears to be taking the appropriate and necessary steps following the cyber attack, with a likely focus on restoring core systems and recovering critical data,' he told the PA news agency. 'The extended disruption may well be a result of attackers having targeted key infrastructure, which takes time to fully assess, secure and restore. 'Given the scale and complexity of M&S's globally connected operations, the recovery process is understandably meticulous, with multiple interconnected systems requiring scrutiny. 'It's essential that M&S prioritises a secure and complete recovery over a rapid one. 'Rushing to bring systems back online without full assurance of their integrity could risk further compromise. 'Ensuring robust security at every layer before resumption is not just sensible – it's vital.'
Daily Mirror
22-05-2025
- Business
- Daily Mirror
M&S website down as retailer still suffering from cyber attack
The Marks and Spencer website has been down for customers, with the retailer still suffering from the effects of a cyber attack Shoppers looking to browse the Marks and Spencer website have hit a snag as the retailer grapples with the aftermath of a cyber attack, leaving the site temporarily inaccessible. Customers attempting to visit the M&S site have been met with an apology: "Sorry you can't browse the site currently. We're making some updates and will be back soon." The webpage remains unavailable for further use. According to the BBC, there are suggestions that the site may simply be undergoing standard maintenance. Marks and Spencer has been approached to provide more details on the situation. The incident follows a recent cyber assault over the Easter weekend, where MandS had to cease online orders and saw its shelves run bare. In this breach, customer data potentially including names, email addresses, postal addresses, and birth dates were compromised. Marks and Spencer acknowledged on Wednesday that "human error" was behind the costly attack, which is looking to set the company back by approximately £300 million. Stuart Machin, the chief executive, has indicated that the disruption might persist up until July, reports Wales Online. This disclosure comes alongside the announcement of an unexpected rise in adjusted pre-tax profits, totalling £875.5 million for the financial year ending March – a 22.2% increase from last year. Digital expert Robert Cottrill, technology director at ANS, emphasised the importance of M&S ensuring a comprehensive restoration of their systems to guarantee security and avert similar future mishaps. Following the recent cyber attack on M&S, he told the PA news agency: "M&S appears to be taking the appropriate and necessary steps following the cyber attack, with a likely focus on restoring core systems and recovering critical data." He added that the continued disruption could very well stem from the assailants having aimed at essential infrastructure, which necessitates time for thorough evaluation, securing, and reinstatement. With M&S's complex global operations, he pointed out: "Given the scale and complexity of M&S's globally connected operations, the recovery process is understandably meticulous, with multiple interconnected systems requiring scrutiny." Stressing the importance of diligent restoration efforts, he said: "It's essential that M&S prioritises a secure and complete recovery over a rapid one. Rushing to bring systems back online without full assurance of their integrity could risk further compromise. Ensuring robust security at every layer before resumption is not just sensible – it's vital." The considerable interruption and resulting sales hit experienced by M&S clearly illustrate a critical lesson for all companies, as he observed: "The major disruption and sales loss M&S has seen following the incident serve as a powerful reminder to all organisations: cybersecurity must be treated as a board-level issue. No business is immune to cyber threats, and those with complex digital ecosystems are particularly vulnerable." To effectively curb the impact of such events, he recommended: "Effective incident response plans, regular testing and collaboration with cybersecurity experts are critical to minimising disruption." Lastly, he addressed the need for a forward-thinking security stance: "But more than that, a proactive approach that includes threat detection, security-by-design principles, and employee awareness is the best defence against increasingly sophisticated attacks."
North Wales Chronicle
22-05-2025
- Business
- North Wales Chronicle
M&S website back up for browsing after being taken down overnight
The retail giant had taken the site down in order to carry out updates, with visitors met with the message: 'Sorry you can't browse the site currently. We're making some updates and will be back soon.' It confirmed the site was back up and running early on Thursday morning, but for browsing only. The group said: 'Our website is open for browsing. 'As we work to get things back to normal for our customers we are doing some overnight updates.' M&S has not been able to take online orders on its website since the Easter weekend and was left with empty shelves in many stores after being targeted by hackers in a damaging attack. Customer personal data, which could have included names, email addresses, postal addresses and dates of birth, was also stolen by hackers. The retail group said on Wednesday that 'human error' had caused the attack, which is set to cost the firm around £300 million. Chief executive Stuart Machin confirmed disruption could last until July. It came as the company reported a higher-than-expected adjusted pre-tax profit of £875.5 million for the year to March, up 22.2% on the previous year. Robert Cottrill, technology director at digital firm ANS, said it was 'vital' M&S took its time to get system recovery right, in order to ensure security and prevent future incidents. 'M&S appears to be taking the appropriate and necessary steps following the cyber attack, with a likely focus on restoring core systems and recovering critical data,' he told the PA news agency. 'The extended disruption may well be a result of attackers having targeted key infrastructure, which takes time to fully assess, secure and restore. 'Given the scale and complexity of M&S's globally connected operations, the recovery process is understandably meticulous, with multiple interconnected systems requiring scrutiny. 'It's essential that M&S prioritises a secure and complete recovery over a rapid one. 'Rushing to bring systems back online without full assurance of their integrity could risk further compromise. 'Ensuring robust security at every layer before resumption is not just sensible – it's vital.'
North Wales Chronicle
22-05-2025
- Business
- North Wales Chronicle
Is the M&S website down? Fallout from cyber attack continues
Visitors to the M&S website were greeted with the message: 'Sorry you can't browse the site currently. "We're making some updates and will be back soon.' Shoppers are being greeted with a sorry you can't browse the site currently message when visiting the M&S website. (Image: M&S) But it is now up and running again after being taken down as part of recovery efforts following the major cyber attack. M&S said: 'Our website is open for browsing. 'As we work to get things back to normal for our customers we are doing some overnight updates.' Fallout from M&S cyber attack could continue until July M&S has endured empty shelves and has been forced to stop orders on its website since being targeted by hackers around the Easter weekend. Customer personal data, which could have included names, email addresses, postal addresses and dates of birth, was also taken by hackers in the attack. The retail giant said on Wednesday (May 21) that 'human error' had caused the attack, which is set to cost the firm around £300 million, and chief executive Stuart Machin confirmed disruption could last until July. It came as the company reported a higher-than-expected adjusted pre-tax profit of £875.5 million for the year to March, up 22.2% on the previous year. Technology director at digital firm ANS, Robert Cottrill, said it was 'vital' M&S took its time to get system recovery right, in order to ensure security and prevent future incidents. How to avoid scams 'M&S appears to be taking the appropriate and necessary steps following the cyber attack, with a likely focus on restoring core systems and recovering critical data,' Mr Cottrill told the PA news agency. 'The extended disruption may well be a result of attackers having targeted key infrastructure, which takes time to fully assess, secure and restore. 'Given the scale and complexity of M&S's globally connected operations, the recovery process is understandably meticulous, with multiple interconnected systems requiring scrutiny.' 'It's essential that M&S prioritises a secure and complete recovery over a rapid one. Rushing to bring systems back online without full assurance of their integrity could risk further compromise. 'Ensuring robust security at every layer before resumption is not just sensible – it's vital. RECOMMENDED READING: 'The major disruption and sales loss M&S has seen following the incident serve as a powerful reminder to all organisations: cybersecurity must be treated as a board-level issue. No business is immune to cyber threats, and those with complex digital ecosystems are particularly vulnerable. 'Effective incident response plans, regular testing and collaboration with cybersecurity experts are critical to minimising disruption. 'But more than that, a proactive approach that includes threat detection, security-by-design principles, and employee awareness is the best defence against increasingly sophisticated attacks.'
