Cyberattack hits Marks & Spencer as online sales remain suspended

Marks & Spencer (M&S) is still grappling with the aftermath of a major cyberattack that forced it to suspend online shopping over a month ago, according to a report published by financial news website MarketScreener. The British retailer, known for its clothing and food lines, is prioritising security over speed as it works to restore systems.

The cyberattack, revealed on April 22, has already caused significant disruption. Analysts estimate the retailer has lost over £60 million in profit and seen more than £1 billion wiped from its market value. M&S stopped taking clothing and home orders through its website and app just days after the breach and has since confirmed that some customer information was stolen.

Sources say the ransomware attack is linked to a group known as Scattered Spider, which used stolen credentials from a third-party IT services provider. M&S has reportedly refused to pay the ransom, in line with government guidance.

While food forecasting systems are now operational, online clothing orders remain unavailable, frustrating customers and raising concerns about long-term brand impact. Analysts warn that losses could deepen if services are not restored soon, with some estimating weekly losses of up to £15 million. Retailers across the UK are now tightening cybersecurity in response.