INTRODUCTION
WHAT IS THE M&S CYBER-ATTACK?
Marks & Spencer (“M&S”), a leading retail company in the United Kingdom, recently disclosed that a cyber-attack resulted in the theft of some customer data. M&S revealed that the stolen information could include personal details such as names, home addresses, phone numbers, and email addresses. Additionally, dates of birth and online order histories may also have been compromised. However, M&S clarified
that payment or card details, as well as account passwords, were not affected. While M&S assured customers that no immediate action is required on their part, it advised them to remain vigilant against any potential attempts to misuse or exploit their personal information. A ransomware group named “DragonForce” claimed responsibility for the attack. However, the cyber-attack has also been linked to a
hacking group named “Scattered Spider”.
