Marks and Spencer has confirmed that customer information was stolen during a recent cyber attack. The stolen data may include personal details like phone numbers, home addresses, and dates of birth. Some order history data may also have been accessed.
The company has assured customers that no bank card details, payment information, or passwords were taken. However, M&S is asking all online customers to reset their passwords as a precaution.
The cyber attack happened three weeks ago, and the retailer is still facing challenges in restoring its systems. Online orders remain paused, and the situation is reportedly costing M&S around £43 million each week, according to Bank of America Global Research.
Stuart Machin, the chief executive of M&S, said that the company is reaching out to customers to let them know about the data breach. He mentioned there’s no sign that the stolen information has been shared publicly so far. Still, experts warn there is a risk that hackers may use or sell the stolen data, which could lead to identify fraud.
The total number of affected customers has not been disclosed. However, M&S stated that all online accounts, holders have been contacted by email, and the case has been reported to the proper authorities. The company is also working with cybersecurity specialists to monitor the situation.
M&S had about 9.4 million active online customers in the year ending March 30. The team at M&S is working non-stop to get services back to normal as soon as possible.
This incident isn’t isolated. Other retailers, like the Co -op, have also been targeted by cyber attacks. The Co-op is expected to resume some of its online services for suppliers soon.
By
