- M&S is still dealing with the fall of cyberattack that hit its digital services
- Online orders remain pause three weeks after hacket took place
- Customer data stolen includes contact information but no passwords or payment information
Three weeks after Marks & Spencer was hit by a cyberattack, the retailer is still working to restore full services.
Online orders remain suspended and the company has now confirmed that some customer data was stolen during the violation. The information taken may include names, addresses, telephone numbers, birth dates and order stories. According to the company, no account passwords or usable payment information were postponed.
The attack has had a visible influence on M&S. Its market value has fallen by about £ 1 billion since the incident, and while shopping in the store and contactless payments has been resumed, the site and the app are still offline to order.
Continued disturbance
If you are visiting the site now, it is stated in a message, “As part of our proactive control of a cyber event, we have made the decision to pause to take orders through our M&S.com websites, apps and over the phone. Our product range remains available to browse online. We are really sorry for this disadvantage. Our stores are open to welcome customers.”
The hackers used a well -known cybercrime service called Dragonforce, which provides tools for ransomware attacks. This group is associated with a method known as double extortion – stealing data and also encrypts them to push the victims to pay a ransom.
M&S said it quickly acted to include the violation, work with cybersecurity experts and notify relevant authorities. Customers have been e -mailed about the incident and are asked to reset their passwords as a caution.
So far, Dragonforce’s Darknet platform has not sent any leaked M&S data, but experts notice that there is still a risk of future exposure or sales.
The dealer has not confirmed how many people were affected, although its latest annual report listed 9.4 million active online users.
Other British retailers have also been targeted recently, including co-op and Harrods. Co-Op, who experienced a similar incident, is reportedly closer to resumption of online operations for its suppliers.
M&S has apologized for the disturbance and assured the customers that steps are being taken to secure systems. Despite this, it remains unclear when full online functionality will return.
