Subscribe
Al Jazeera logo
Associated Press logo
Newsmax logo
3 articles
·4M

Marks & Spencer Faces Major Cyberattack Disrupting Online Services

Marks & Spencer and Harrods have been targeted by cyberattacks, significantly disrupting operations and raising concerns across the retail sector.

Slide 1
Harrods, M&S hit by cyberattack: What happened, who’s behind it?
Al Jazeera

Al Jazeera

Slide 2
Harrods becomes latest UK retailer to face cyber threat as M&S' struggles persist
Associated Press

Associated Press

Slide 3
Harrods Becomes Latest UK Retailer to Face Cyber Threat as M&S' Struggles Persist
Newsmax

Newsmax

Subscribe to unlock this story

We really don't like cutting you off, but you've reached your monthly limit. At just $5/month, subscriptions are how we keep this project going. Start your free 7-day trial today!

Get Started

Have an account? Sign in

Overview

A summary of the key points of this story verified across multiple sources.

Marks & Spencer is grappling with a severe cyberattack by a group named Scattered Spider, halting online orders and causing substantial losses. Harrods has also reported a cyber incident amid rising cybersecurity threats in retail. The UK National Cyber Security Centre is involved in investigations, urging retailers to bolster defenses against growing cyber threats.

Written by AI using shared reports from
3 articles
.

Report issue

Pano Newsletter

Read both sides in 5 minutes each day

Analysis

Compare how each side frames the story — including which facts they emphasize or leave out.
  • Marks & Spencer and Harrods have recently suffered significant cyberattacks, with investigations underway and operational disruptions affecting customer services and stock availability.
  • The hacker group Scattered Spider is suspected to be involved, highlighting a concerning trend of increasing cyber threats targeting major retailers.
  • Experts are calling for enhanced cybersecurity measures across the retail sector as these incidents demonstrate a growing boldness among cybercriminals.

How we categorize media bias

Articles (3)

Compare how different news outlets are covering this story.

Center (1)

FAQ

Dig deeper on this story with frequently asked questions.

The cyberattack on Marks & Spencer has been attributed to a hacking collective known as Scattered Spider (**also referred to as UNC3944**), which includes English-speaking hackers primarily based in the UK and US[1][3][4].

The Grocer

The **DragonForce encryptor** is the ransomware tool used by Scattered Spider to lock Marks & Spencer's critical systems and demand payment, contributing to an estimated £500 million drop in market value and operational disruptions[4][5].

Specops Software

Marks & Spencer suspended online sales for **five days** following the ransomware attack, resulting in daily losses averaging £3.8 million ($5.1 million) during the disruption[4][5].

Specops Software

Attackers gained initial access through **Active Directory credential theft**, exploiting vulnerabilities to infiltrate M&S's systems as early as February 2025 before deploying ransomware[4][5].

Specops Software

**Harrods** and **Co-op** have also reported recent cyber incidents, indicating a broader cybersecurity crisis in the UK retail sector[5].

Peterborough Today

History

See how this story has evolved over time.
  • This story does not have any previous versions.