M&S says personal customer data stolen in recent cyber attack

Marks & Spencer has revealed that some personal customer data have been stolen in the recent cyber attack, which could include contact data and birth dates.

The High Street Street Giant said that personal information tasks could also include online orders history, but added that data theft did not include the usable payment or card details, or the passwords of the account.

M&S was beaten by the cybernetic three weeks ago and is struggling to obtain the services back to normal, with online orders still suspended.

The retailer said that customers would be asked to restore passwords for accounts “for additional tranquility.”

The executive director of M&S, Stuart Machin, said the company was writing to customers to inform them that “unfortunately, some personal information from customers has been tasks.”

“It is important to note that there is no evidence that the information has been shared,” he added.

Machin said M&S was “working 24 hours for things to return to normal” as quickly as possible.

The retailer has not said how many of his clients have stolen their data, but has sent an email to all customers of the website to alert them about data violation.

According to its last results of the whole year, the company had about 9.4 million active customers in March 30.

M&S confirmed that stolen contact information could include:

• name
• Birthdate
• Telephone number
• House address
• Home Information
• Email address
• Online order history

The retailer added that card information tasks would not be usable, since it does not contain complete details of card payment in their systems.

M&S has said that people do not need to take measures, but also said:

• Users will be asked to restore their password for their online account
• Customers must be cautious since “they can receive emails, calls or text messages that claim to be M&S when they are not”
• M&S will never communicate with you and request information about the personal account as user names or passwords

Matt Hull, chief of intelligence of threats of Cyber ​​Security Company NCC Group, said that attackers who have stolen personal information can “create very convincing scams.”

“If you are not sure of the authenticity of an email, do not click on any link. In your place, visit the company’s website directly to verify any claim.”

The problems in M&S Begen during the Easter weekend when customers reported probles with click and collection payments and without contact in stores.

The company confirmed that it was dealing with a “cyber incident” and, although the services in the store have resumed, its online orders on its website and application have been suspended since April 25.

It still does not become when orders will resume online.

The announcement of M&S that customer data had been stolen as part of the ongoing cyber attack was expected due to the nature of the attack.

Computer pirates behind this, which also recently addresses the Cooperativa Harrods, used the Dragonforce cyber crime service to carry out the attacks.

Dragonforce operates a cybernetic service affiliated in Darknet so that anyone uses their malicious software and website to carry out attacks and extortions.

It is known that the group uses a double extortion method, which means that they steal a copy of their victim’s data, as well as revolt it to make it unusable.

They can be effective to request a rescue both to decipher the data and to delete your copy.

However, if the Pirateada person or company does not want to pay a ransom, criminals can in some cases start filtering the stolen data to other cybercriminals, which could look for additional attacks to obtain more sensitive data.

At the moment, the Dragonforce Darknet website has no entries on M&S.

Catherine Shuttleworth, a retail analyst at Savvy Marketing, said the last update was a “more blow to M&S.”

“Until now, M&S customers have supported the business in the light of cyber attack, but they are very concerned that their data has been committed and will need a great tranquility of the business about what this means holy.”

“M&S is one of the most reliable brands on Earth and buyers keep it at the highest level.”