UK-based retailer Marks & Spencer (M&S) has issued an update on a cyber incident that recently disrupted operations in its stores.
The incident is said to have impacted contactless payment system and the collection of online orders, The Guardian reported.
Go deeper with GlobalData
The retailer also informed customers of delayed click-and-collect orders.
In a message to its customers via the London Stock Exchange (LSE), M&S said that it implemented temporary adjustments to store operations to safeguard customers and business continuity.
Despite these challenges, physical stores remain open, and the website and app are functioning normally.
M&S has taken steps to manage the situation by reporting the incident to the National Cyber Security Centre and engaging cybersecurity specialists. It is also implementing measures to enhance network security.
US Tariffs are shifting - will you react or anticipate?
Don’t let policy changes catch you off guard. Stay proactive with real-time data and expert analysis.
By GlobalData“The company has engaged external cyber security experts to assist with investigating and managing the incident. We are taking actions to further protect our network and ensure we can continue to maintain customer service,” according to the statement on the LSE.
The disruption began on Monday (21 April) with customers expressing their frustrations on social media.
“Customer trust is incredibly important to us, and if the situation changes an update will be provided as appropriate,” M&S stated.
This incident at M&S is part of a larger trend of cyberattacks targeting businesses, including a recent attack on Transport for London.
A 2022 government report highlighted that 39% of UK businesses had reported cyber breaches or attacks over a period of 12 months.
Recently, M&S unveiled an investment initiative for its London stores, committing £90m ($119m) to launch 17 new and enhanced stores within the current and following year.
