;

Editorial & Advertiser disclosure

Global Banking and Finance Review is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

Home > Headlines > M&S says cyber hackers broke in through third-party contractor

Headlines

M&S says cyber hackers broke in through third-party contractor

Published by Global Banking and Finance Review

Posted on May 21, 2025

Featured image for article about Headlines

By Paul Sandle and James Davey

LONDON (Reuters) -Marks & Spencer said hackers broke into its systems by tricking employees at a third-party contractor, skirting its digital defences to launch a cyberattack that will disrupt the British retailer for months.

Giving the first details since disclosing the breach on April 22, Chief Executive Stuart Machin said all companies were vulnerable, and M&S had boosted its defences by trebling tech spending in the last three years.

M&S has an IT contract with Tata Consulting Services. One source familiar with the matter told Reuters it was a means of access. TCS has declined to comment.

Machin declined to comment on TCS specifically when asked if it was the weak link.

"Unable to get into our systems by breaking through our digital defences, the attackers did try another route resorting to social engineering and entering through a third party rather than a system weakness," he told reporters.

"Once access was gained, they used highly sophisticated techniques as part of the attack."

Machin declined to comment on any ransom demand, citing advice from government agencies and law enforcement.

M&S stopped online sales. It said on Wednesday they were unlikely to be fully restored until July.

Machin said M&S became aware of the breach when it spotted suspicious activity during the Easter weekend of April 19-20.

He said the time between the hackers gaining access and detection was "short". Experts told the company that the average was 10 days and in some cases many months.

Britain's National Crime Agency told the BBC the attack investigation was focused on a cluster of young, English-speaking hackers.

M&S, which has sales of nearly 14 billion pounds ($19 billion) a year, immediately called in experts, partners and authorities, Machin said.

Some 600 systems had been scanned for damage, he said, and they were gradually being brought back online.

($1 = 0.7459 pounds)

(Reporting by Paul Sandle and James Davey. Editing by Mark Potter)

More from Headlines

Explore more articles in the Headlines category

New Rome metro stations showcase ancient treasures after years of delays

New Czech government signals tough stance on migration, EU emissions rules

What's in the European Commission's proposals to reverse 2035 combustion engine ban?

Zaporizhzhia nuclear plant running on single power line, Russia says

No news on whereabouts or health of Iranian Nobel laureate Narges Mohammadi, supporters say

EU talks to fund Ukraine with Russian assets make progress, key decisions seen Thursday

Germany wraps up Patriot air defence mission in Poland

Bosnian police detain two officials over deadly retirement home fire

Explainer-Bondi Beach suspects travelled to Philippine region known for Islamist militancy

Family of Bondi hero in Syria says his home country is proud of him

UK police charge two men with belonging to Hezbollah, attending terrorism training

Saudi firm Midad among frontrunners to buy Lukoil's global assets, sources say

View All Headlines Posts