Marks & Spencer (M&S) is grappling with a cyber attack that has disrupted its Click and Collect service and contactless payments, leaving frustrated customers venting on social media. The retail giant confirmed the incident has caused delays since last weekend, with gift card payments also affected.
Key Impacts for Shoppers:
- Click and Collect delays: Orders may take longer to process
- Gift Card Issues: Some stores unable to accept them
- Contactless payments: Temporary processing problems
M&S CEO Stuart Machin apologized to customers, noting the company made “small changes” to operations to enhance security. External cybersecurity experts are investigating, and the UK’s National Cyber Security Centre (NCSC) and data watchdog (ICO) have been alerted.
Cyberattacks on major retailers are becoming more frequent, with Morrisons, Barclays, and Lloyds also facing recent IT outages. Experts warn that even well-prepared businesses are vulnerable.
Daniel Card (BCS): “This highlights the gap between perceived and actual cyber resilience.”
Ian McShane (Arctic Wolf): “Attackers strike when it hurts most – like during peak shopping periods.”
What Customers Should Do
- Check M&S updates before visiting stores
- Use alternative payment methods if possible
- Monitor accounts for unusual activity
M&S says no customer action is required yet but will provide updates if the situation changes.
By
