Particle.news

Download on the App Store

M&S Cyberattack Enters Second Week, DragonForce Threatens Data Release

Marks & Spencer continues to struggle with online disruptions as investigations point to ransomware groups Scattered Spider and DragonForce.

A contactless payment card reader is seen at an M&S Food Hall in London, Britain, April 30, 2025. REUTERS/Suzanne Plunkett
Image
Image
People look at shelves of cakes at an M&S Food Hall in London, Britain, April 30, 2025. REUTERS/Suzanne Plunkett

Overview

  • Marks & Spencer remains unable to process online orders, with in-store services still facing disruptions two weeks after the attack.
  • Hacking group DragonForce claims responsibility for the attack, alleging it has stolen customer and employee data and issued ransom demands.
  • The National Cyber Security Centre and Metropolitan Police are actively investigating the attack, which has wiped £700 million off M&S's market value.
  • Similar cyber incidents at Harrods and Co-op highlight a broader wave of attacks targeting UK retailers, prompting warnings of escalating risks.
  • M&S CEO Stuart Machin apologized to customers, emphasizing ongoing efforts to restore services and urging shoppers to visit stores during the bank holiday weekend.