This is not just any ‘cyber incident’ … this is an M&S ‘cyber incident’ – Source: go.theregister.com

UK high street mainstay Marks & Spencer told the London Stock Exchange this afternoon it has been managing a “cyber incident” for “the past few days.”

Not included in the LSE notification were details about when the incident took place or what kind of incident it is suspected to be, but an email to customers, seen by The Register, said Click & Collect orders were affected.

“Importantly, our stores remain open, and our website and app are operating as normal,” the letter from CEO Stuart Machin reads. “There is no need for you to take any action at this time and if the situation changes, we will let you know. There may be some limited delays to your click and collect order, which we are working hard to resolve.”

The Register asked M&S for additional details but it didn’t immediately respond.

• Law firm ‘didn’t think’ data theft was a breach, says ICO. Now it’s nursing a £60K fine
• Pharmacist accused of using webcams to spy on women in intimate moments at work, home
• Oracle says its cloud was in fact compromised
• Toronto Zoo ransomware crooks snatch decades of visitor data

The retailer told the LSE that “minor, temporary changes” were made to its store operations, without revealing what they were, to protect customers and the business.

In keeping with the usual format of cyberattack disclosures, M&S said it had informed the National Cyber Security Centre and Information Commissioner’s Office, and drafted outside experts to help manage the case. It did not mention payment information.

“Customer trust is incredibly important to us, and if the situation changes an update will be provided as appropriate.”

Multiple social media users reported issues as far back as Saturday via X, ranging from returns being unavailable to Click & Collect orders being in store, but staff were unable to hand them over to shoppers due to technical difficulties. ®