Marks & Spencer (M&S), one of the largest retailers in the United Kingdom, is currently and urgently addressing a significant cyber incident. In response, they’ve halted online orders since April 25. The British home goods retailer logged that the unauthorized access included the theft of limited personal customer information. M&S said it is working around the clock to get online services back up and running. They’re dedicated to continuing to regaining the trust of their 9.4 million active online users customers.
Swift Action Taken
When news of the cyber attack came to light, M&S did what many companies would be wise to do—acted swiftly to shield its customers and minimize damages. The company’s non-pharmacy in-store services have officially returned. Now, consumers can experience the new retail world in person, even as the ability to shop that way online remains closed.
Stuart Machin, CEO of M&S, confirmed the breach, stating, “Unfortunately, some personal customer information has been taken.” He emphasized the company’s commitment to restoring normal operations, declaring that they are “working around the clock to get things back to normal.” Machin noted, “Importantly, there is no evidence that the information has been shared,” attempting to alleviate concerns among customers regarding the potential misuse of their data.
Following this breach, customers are advised to stay alert for unusual or unsolicited contact. Matt Hull, an expert in cybersecurity, advised, “If you’re unsure about an email’s authenticity, don’t click any links. Instead, visit the company’s website directly to verify any claims.” This guidance is intended to help customers mitigate their risk of falling victim to phishing attacks in response to the breach.
Retail Industry Impact
Here’s an explanation of the continuing crisis from retail industry expert Catherine Shuttleworth, CEO of Savvy Marketing. Ms Sykes pointed out that the announcement represents “yet another nail in M&S’s coffin.” She acknowledged its impact on customer confidence and the company’s continued work to address the fallout. Shuttleworth emphasized how M&S customers have supported the company through this difficult period. What they aren’t worried about is their compromised data; if anything, they’re terrified and need clear communication on what that means to them.
The retailer has shown a commitment to working with impacted customers. They are telling their stories and releasing their playbooks to help each other build better cybersecurity defenses in the future. M&S promises to continue to provide confidence to their customers and make sure that their data is safe moving forward.
What The Author Thinks
M&S’s response, while swift, highlights the increasingly difficult balancing act retailers face in maintaining cybersecurity while continuing to build trust. The company’s future moves will need to be very transparent to ensure customers that their personal data is safe from further harm. Clear, frequent communication is essential in a time when consumer confidence is so fragile.
Featured image credit: Wikimedia Commons
For more stories like it, click the +Follow button at the top of this page to follow us.