Marks and Spencer (M&S) is still grappling with the fallout from a cyber security incident that hit on April 21. It’s been 72 hours, and contactless payments along with click-and-collect services are still offline.
So what happened? The details are sparse. M&S has brought in third-party cyber forensics experts and is collaborating with the National Cyber Security Centre (NCSC) to get to the bottom of things. In an update posted on April 23, M&S told customers they’re adjusting some operations to keep everyone safe. A spokesperson said, “We’ve made the proactive decision to take some processes offline to protect our colleagues, partners, suppliers, and our business.” While stores are open and online shopping is still possible, they aren’t processing contactless payments right now. Click-and-collect orders have been paused, and there may be delays in online deliveries. M&S appreciates the support from customers during this disruption.
Despite some praise for their transparent communication, M&S hasn’t confirmed exactly what type of cyber attack they faced, leading to speculation about ransomware. Customers might be worried about their personal and financial data. M&S maintains that there’s no need for customers to panic, but experts, like McAfee’s Vonny Gamot, suggest a few precautions.
High-profile attacks can attract scammers looking to exploit the situation. Gamot warns that phishing attacks could follow, with fraudsters sending emails or texts that prompt you to click on links to fake sites. Be wary of messages claiming to need an alternate payment method or asking you to reset your login details—they’re often designed to catch you off guard.
Scammers usually create a sense of urgency, making you feel like you have to act fast. For instance, they might suggest your data is compromised and prompt you to secure your accounts. If you receive unexpected communications, it’s wise to verify them with M&S before taking any action.
It’s also a good idea to update your passwords and keep an eye on your bank and credit card statements for any unauthorized changes. Report anything suspicious immediately, and if you think your data might be at risk, consider placing a fraud alert on your accounts for extra protection.