Marks & Spencer, a prominent retail giant in the UK, has confirmed that it is currently dealing with a cybersecurity incident that has caused disruptions in its services. The company officially acknowledged the Marks & Spencer data breach incident in a filing to the London Stock Exchange on April 22, 2025. Despite the temporary adjustments made to store operations, Marks & Spencer reassured customers that its stores remain open and its website and app are functioning normally.
The cybersecurity breach at Marks & Spencer has raised concerns about the level of preparedness in large retail chains when it comes to dealing with such incidents. The official filing released on Monday mentioned that the company acted swiftly upon detecting the breach and had to make minor changes to its operations to safeguard both customers and the business. Marks & Spencer expressed regret for any inconvenience caused by these adjustments.
Although the full extent of the cyberattack on Marks & Spencer is yet to be fully understood, the retailer has sought assistance from external cybersecurity experts to aid in the investigation and mitigation efforts. The National Cyber Security Centre (NCSC) and relevant data protection authorities have also been informed about the incident. The company has not confirmed whether customer data has been compromised, promising further updates as the situation progresses.
The impact of the data breach at Marks & Spencer has been felt in some in-store services, notably affecting the popular Click & Collect function. Customers have taken to social media platforms like Twitter to express their frustrations with the ongoing technical issues. One user, @JohnWH79, highlighted the importance of business continuity plans and questioned the lack thereof during computer disruptions. In response, Marks & Spencer’s official account acknowledged the disruption and apologized for the inconvenience faced by customers.
Despite efforts to resolve the technical issues, Click & Collect services in some Marks & Spencer stores remain unavailable, leading to more concerns among customers. Questions have also been raised about the absence of basic contingency plans, such as using manual systems like pen and paper during downtimes.
As the situation unfolds, analysts are closely monitoring the potential impact of the cyberattack on Marks & Spencer’s customer confidence and overall performance, particularly with the company’s full-year results set for release in May. While further statements from the company are awaited, representatives like Fraser Ramzan and the Corporate Press Office are available for inquiries. The Cyber Express will continue to monitor the developments in this ongoing story and provide updates as more information about the cyberattack at Marks & Spencer emerges.
The incident serves as a stark reminder of the importance of cybersecurity measures in an increasingly digital world, highlighting the need for companies to stay vigilant and prepared against potential cyber threats.