Particle.news
Download on the App Store
4 ARTICLES
·
3d ago

Marks & Spencer's Cyberattack Recovery Delayed, Financial Losses Mount

A ransomware attack has left M&S unable to resume online orders, with losses exceeding £60 million and customer data compromised.

A contactless payment card reader is seen at an M&S Food Hall in London, Britain, April 30, 2025. REUTERS/Suzanne Plunkett/File Photo
Image
Image

Overview

  • Marks & Spencer remains unable to process online clothing and home orders nearly a month after a ransomware attack, prioritizing a secure system rebuild over speed.
  • Analysts estimate the attack has cost M&S over £60 million in lost profit and wiped more than £1 billion from its market value, with weekly profit losses projected at £15 million.
  • The cyberattack, attributed to Scattered Spider and DragonForce, exploited third-party contractor logins and led to the theft of customer personal data, excluding payment details.
  • In-store services and food logistics have partially recovered, but the prolonged disruption risks eroding customer trust and impacting employee morale.
  • UK authorities and cybersecurity experts are advising retailers to strengthen defenses as the attack highlights growing ransomware threats to the sector.