Search
00
GBAF Logo
trophy
Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

Subscribe to our newsletter

Get the latest news and updates from our team.

Global Banking & Finance Review®

Global Banking & Finance Review® - Subscribe to our newsletter

Company

    GBAF Logo
    • About Us
    • Profile
    • Privacy & Cookie Policy
    • Terms of Use
    • Contact Us
    • Advertising
    • Submit Post
    • Latest News
    • Research Reports
    • Press Release
    • Awards▾
      • About the Awards
      • Awards TimeTable
      • Submit Nominations
      • Testimonials
      • Media Room
      • Award Winners
      • FAQ
    • Magazines▾
      • Global Banking & Finance Review Magazine Issue 79
      • Global Banking & Finance Review Magazine Issue 78
      • Global Banking & Finance Review Magazine Issue 77
      • Global Banking & Finance Review Magazine Issue 76
      • Global Banking & Finance Review Magazine Issue 75
      • Global Banking & Finance Review Magazine Issue 73
      • Global Banking & Finance Review Magazine Issue 71
      • Global Banking & Finance Review Magazine Issue 70
      • Global Banking & Finance Review Magazine Issue 69
      • Global Banking & Finance Review Magazine Issue 66
    Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

    Global Banking & Finance Review® is a leading financial portal and online magazine offering News, Analysis, Opinion, Reviews, Interviews & Videos from the world of Banking, Finance, Business, Trading, Technology, Investing, Brokerage, Foreign Exchange, Tax & Legal, Islamic Finance, Asset & Wealth Management.
    Copyright © 2010-2026 GBAF Publications Ltd - All Rights Reserved. | Sitemap | Tags | Developed By eCorpIT

    Editorial & Advertiser disclosure

    Global Banking & Finance Review® is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

    Home > Headlines > M&S says cyber hackers broke in through third-party contractor
    Headlines

    M&S says cyber hackers broke in through third-party contractor

    Published by Global Banking & Finance Review®

    Posted on May 21, 2025

    2 min read

    Last updated: January 23, 2026

    M&S says cyber hackers broke in through third-party contractor - Headlines news and analysis from Global Banking & Finance Review
    Why waste money on news and opinion when you can access them for free?

    Take advantage of our newsletter subscription and stay informed on the go!

    Subscribe

    Tags:cybersecuritytechnologyfinancial services

    Quick Summary

    M&S faced a cyber attack via a third-party contractor, bypassing defenses through social engineering. Online sales are disrupted, with full restoration expected by July.

    M&S says cyber hackers broke in through third-party contractor

    By Paul Sandle and James Davey

    LONDON (Reuters) -Marks & Spencer said hackers broke into its systems by tricking employees at a third-party contractor, skirting its digital defences to launch a cyberattack that will disrupt the British retailer for months.

    Giving the first details since disclosing the breach on April 22, Chief Executive Stuart Machin said all companies were vulnerable, and M&S had boosted its defences by trebling tech spending in the last three years.

    M&S has an IT contract with Tata Consulting Services. One source familiar with the matter told Reuters it was a means of access. TCS has declined to comment.

    Machin declined to comment on TCS specifically when asked if it was the weak link.

    "Unable to get into our systems by breaking through our digital defences, the attackers did try another route resorting to social engineering and entering through a third party rather than a system weakness," he told reporters.

    "Once access was gained, they used highly sophisticated techniques as part of the attack."

    Machin declined to comment on any ransom demand, citing advice from government agencies and law enforcement.

    M&S stopped online sales. It said on Wednesday they were unlikely to be fully restored until July.

    Machin said M&S became aware of the breach when it spotted suspicious activity during the Easter weekend of April 19-20.

    He said the time between the hackers gaining access and detection was "short". Experts told the company that the average was 10 days and in some cases many months.

    Britain's National Crime Agency told the BBC the attack investigation was focused on a cluster of young, English-speaking hackers.

    M&S, which has sales of nearly 14 billion pounds ($19 billion) a year, immediately called in experts, partners and authorities, Machin said.

    Some 600 systems had been scanned for damage, he said, and they were gradually being brought back online.

    ($1 = 0.7459 pounds)

    (Reporting by Paul Sandle and James Davey. Editing by Mark Potter)

    Key Takeaways

    • •M&S experienced a cyber attack through a third-party contractor.
    • •The attack bypassed digital defenses using social engineering.
    • •M&S has increased tech spending to boost defenses.
    • •Online sales are disrupted and may not resume until July.
    • •Investigation focuses on young, English-speaking hackers.

    Frequently Asked Questions about M&S says cyber hackers broke in through third-party contractor

    1How did the hackers gain access to M&S systems?

    The hackers gained access by tricking employees at a third-party contractor through social engineering, bypassing M&S's digital defenses.

    2What measures has M&S taken following the cyber attack?

    M&S has increased its tech spending by threefold to bolster its defenses and has called in experts and authorities to assist in the investigation.

    3When did M&S first become aware of the cyber breach?

    M&S became aware of the breach during the Easter weekend of April 19-20, when they spotted suspicious activity.

    4What is the estimated sales figure for M&S?

    M&S has annual sales of nearly 14 billion pounds, which is approximately $19 billion.

    5What is the expected timeline for restoring online sales?

    M&S stated that online sales are unlikely to be fully restored until July.

    More from Headlines

    Explore more articles in the Headlines category

    Image for Exclusive-US plans initial payment towards billions owed to UN-envoy Waltz
    Exclusive-US plans initial payment towards billions owed to UN-envoy Waltz
    Image for Trump says good talks ongoing on Ukraine
    Trump says good talks ongoing on Ukraine
    Image for France to rally aid for Lebanon as it warns truce gains remain fragile
    France to rally aid for Lebanon as it warns truce gains remain fragile
    Image for Exclusive-US aims for March peace deal in Ukraine, quick elections, sources say
    Exclusive-US aims for March peace deal in Ukraine, quick elections, sources say
    Image for Ukraine's Zelenskiy calls for faster action on air defence, repairs to grid
    Ukraine's Zelenskiy calls for faster action on air defence, repairs to grid
    Image for Olympics-Italy's president takes the tram in video tribute to Milan transport
    Olympics-Italy's president takes the tram in video tribute to Milan transport
    Image for Goldman Sachs teams up with Anthropic to automate banking tasks with AI agents, CNBC reports
    Goldman Sachs teams up with Anthropic to automate banking tasks with AI agents, CNBC reports
    Image for Analysis-Hims' $49 weight-loss pill rattles investor case for cash-pay obesity market
    Analysis-Hims' $49 weight-loss pill rattles investor case for cash-pay obesity market
    Image for Big Tech's quarter in four charts: AI splurge and cloud growth
    Big Tech's quarter in four charts: AI splurge and cloud growth
    Image for Exclusive-Bangladesh PM front-runner rejects unity government offer, says his party set to win
    Exclusive-Bangladesh PM front-runner rejects unity government offer, says his party set to win
    Image for Azerbaijan issues strong protest to Russia over lawmaker's comments on Karabakh trial
    Azerbaijan issues strong protest to Russia over lawmaker's comments on Karabakh trial
    Image for UK police search properties in probe into Mandelson over Epstein ties
    UK police search properties in probe into Mandelson over Epstein ties
    View All Headlines Posts
    Previous Headlines PostDeutsche ReGas gets EU funding for Lubmin hydrogen project
    Next Headlines PostFerrovial highway revenue boosted by pre-tariff US traffic