Leading British retailer Marks & Spencer Group plc (M&S) has confirmed it has been grappling with a cyberattack over the past several days, causing temporary disruptions to payment processing and online orders.
According to an official company statement, the incident required M&S to implement immediate, minor changes to store operations in order to safeguard both customers and the business.
While precise details about the attack remain under wraps, M&S did acknowledge some levels of customer inconvenience, for which the company issued an apology.
.png
)
“We are sorry for any inconvenience experienced,” an M&S spokesperson said, adding, “Importantly, our stores remain open and our website and app are operating as normal.”
To combat the ongoing cyber threat, Marks & Spencer has engaged external cybersecurity experts.
These specialists are assisting M&S in investigating the breach, managing security, and implementing further protective measures across the retailer’s network.
The company has also reported the incident to the National Cyber Security Centre and relevant data protection supervisory authorities as part of its regulatory obligations.
M&S has promised to keep its customers informed should the situation develop. “Customer trust is incredibly important to us, and if the situation changes an update will be provided as appropriate,” the company stated.
The cyberattack comes at a particularly sensitive time for M&S, with its financial year having ended on March 29, 2025.
The company is expected to announce its full-year results on May 21, 2025. Market analysts will be watching closely to see if the incident has any impact on the retailer’s financial performance or customer sentiment.
Digital security experts remark that attacks targeting major retailers are on the rise, as companies with large customer databases and sizable online operations present lucrative targets for cybercriminals.
M&S’s swift response—including changes in operations and public communication—may help mitigate reputational damage.
Marks & Spencer has emphasised that customer service continuity remains a top priority, with extra precautions in place as investigations continue.
For now, stores, the M&S website, and the app are functioning as usual, and the company is working to restore normal payment and order processing systems as quickly as possible.
Customers with concerns or those experiencing ongoing disruptions are encouraged to contact M&S’s investor relations or corporate press office for further information.
As the investigation unfolds, Marks & Spencer’s experience serves as another reminder of the critical importance of robust cyber defences, especially for major players in the retail sector.
Find this News Interesting! Follow us on Google News, LinkedIn, & X to Get Instant Updates!
 has confirmed it has been grappling with a cyberattack over the past several days.){kind=link}