M&S tells hundreds of warehouse staff to stay at home after cyber-attack

TruthLens AI Suggested Headline:

"Marks & Spencer Halts Online Orders and Sends Warehouse Staff Home Following Cyber-Attack"

M&S tells hundreds of warehouse staff to stay at home after cyber-attack analysis cover image The Guardian 8.5
Image Source: https://i.guim.co.uk/img/media/eced292b71d3b0ed1394a989b2c3b0548b79355f/0_163_3200_1919/master/3200.jpg?width=1200&height=630&quality=85&auto=format&fit=crop&overlay-align=bottom%2Cleft&overlay-width=100p&overlay-base64=L2ltZy9zdGF0aWMvb3ZlcmxheXMvdGctZGVmYXVsdC5wbmc&enable=upscale&s=c7220366fed324e6b9ae092918e5ce61
Original Article Source: https://www.theguardian.com/business/2025/apr/28/m-and-s-marks-spencer-warehouse-staff-cyber-attack
View Raw Article Source (External Link)
Raw Article Publish Date:
AI Analysis Average Score: 8.5
These scores (0-10 scale) are generated by Truthlens AI's analysis, assessing the article's objectivity, accuracy, and transparency. Higher scores indicate better alignment with journalistic standards. Hover over chart points for metric details.

TruthLens AI Summary

Marks & Spencer (M&S) has instructed approximately 200 workers at its main online distribution center in Castle Donington, Leicestershire, to remain at home due to a significant cyber-attack that has disrupted its operations for over four days. The retailer halted all website orders on Friday, which has severely impacted its online clothing and homeware sales that average nearly £3.8 million daily. While the online shopping platform remains inaccessible for order placements, customers are still able to browse products and shop in physical stores. M&S has reassured customers that their data remains secure and has engaged cybersecurity experts to investigate the breach and enhance their network security. Additionally, the company has restricted access to its systems for remote workers to mitigate the attack's spread, as reported by the Sunday Times.

The cyber-attack has not only affected online sales but has also led to complications in physical stores, particularly with contactless payment systems and the collection of online orders. Problems began earlier in the week, but contactless payments were restored by late Thursday. Customers have expressed frustration over the inability to collect their online orders, with some reporting that their orders were not visible in their accounts despite receiving collection notifications. M&S has communicated via social media that orders placed after April 23 will be refunded, and customers should wait for a “ready to collect” notification before heading to stores for earlier orders. Analysts predict that the longer the disruption continues, the more significant the financial impact will be for M&S, especially as the company prepares to release its full-year results on May 21, following a strong sales period during the Christmas season.

TruthLens AI Analysis

The news article highlights a significant issue affecting Marks & Spencer (M&S) due to a cyber-attack that has disrupted both its online and physical retail operations. This incident raises questions about cybersecurity in retail, customer trust, and the operational resilience of major companies.

Impacts of the Cyber-Attack

M&S instructed hundreds of workers at its main online distribution center to remain at home, indicating a severe operational disruption. This action not only reflects the immediate consequences of the cyber-attack but also signals potential long-term impacts on the company's revenue, especially given the estimated loss of nearly £3.8 million per day in online sales.

Customer Experience and Trust

The article outlines the inconveniences faced by customers, such as issues with collecting online orders and contactless payment disruptions. M&S's public apology suggests an understanding of the potential damage to customer trust. The assurance that customer data has not been compromised aims to mitigate fears and retain customer loyalty.

Company Response and Future Actions

M&S has engaged cybersecurity experts to address the incident, which demonstrates a proactive approach to crisis management. Limiting access to systems and enhancing network protection indicates that the company is taking steps to prevent future breaches, which may help reassure stakeholders in the long run.

Public Perception and Media Influence

By reporting extensively on the consequences of the cyber-attack, the media may shape public perception of M&S as a vulnerable entity. This portrayal could influence customer behavior, potentially leading to a decrease in online shopping until confidence is restored.

Market Implications

The disruption caused by the cyber-attack may have stock market implications, particularly for M&S and other retailers that may face similar vulnerabilities. Investors will likely monitor the situation closely, as the company's ability to recover from this incident could affect its stock performance.

Broader Context and Relevance

This incident is part of a larger trend in the retail industry, where cyber-attacks are becoming increasingly common. The relevance of such news extends beyond M&S, as it serves as a reminder for all businesses about the importance of cybersecurity in a digital economy.

Trustworthiness of the Article

The article appears to be credible, relying on factual reporting of the incident and the company's response. However, the focus on negative aspects may create a skewed perception of M&S's overall resilience. The language used is straightforward, avoiding sensationalism, which contributes to its reliability.

In conclusion, the article serves to inform the public about the ongoing issues M&S faces due to a cyber-attack while subtly urging caution regarding trust in online retail. The implications of this event extend beyond M&S, reflecting broader concerns in the retail sector regarding cybersecurity and customer relations.

Unanalyzed Article Content

Source URL: https://www.theguardian.com/business/2025/apr/28/m-and-s-marks-spencer-warehouse-staff-cyber-attack

Marks & Spencer has told hundreds of workers at its main online distribution centre in Leicestershire to stay at home as website orders remain on hold for the fourth day in a row.

The retailer, which is battling the consequences of acyber-attack that begana week ago and has affected stores as well as its online business, told 200 agency staff at the Castle Donington site they were not currently required.

The move, first reported by Sky News, came after ithalted all orders through its website and apps on Friday. The company has apologised to shoppers for “this inconvenience”, which will hit its online clothing and homeware sales, which amount to almost £3.8m a day on average.

Shoppers are still able to browse online and shop in M&S’s physical stores using cash or card.

The company said shoppers did not need to take any action – suggesting no customer data had been accessed.

M&S has hired cybersecurity experts to help investigate and manage the problem and said it was taking actions to further protect the network to ensure it could continue serving shoppers.

It has also limited access to its systems via its virtual private network for staff working from home to try to stop the spread of the attack, the Sunday Times reported.

The retail website closure came after several days of problems in stores where contactless payments and the collection of online orders were hit from Monday.Contactless paymentswere restarted late on Thursday.

A separate technical problem on the Saturday of the busy Easter weekend affected only contactless payments.

Shoppers said problems with picking up online orders made before the website shut down continued over the weekend.

“I have received several emails asking me to collect, made a special journey to my local store, 18 miles, only to be told I could not collect. Staff were brilliant,” one shopper wrote on Facebook.

Sign up toBusiness Today

Get set for the working day – we'll point you to all the business news and analysis you need every morning

after newsletter promotion

Another said: “I returned an online order in store yesterday but it’s not showing on my account.”

M&S told shoppers on social media that orders placed after Wednesday 23 April would be refunded. Those expecting to pick up online orders in stores this week that had been placed before Wednesday were told to wait for a “ready to collect” notification email before heading to a store.

Security experts warned shoppers to watch out for scammers capitalising on the high-profile incident.

The Investec analyst Kate Calvert said that the longer it took for online sales to resume, the worse the hit would be for M&S. “There will be a short-term profit impact without a doubt,” she said.

M&S said in January that ithad rung up strong sales over the Christmas period. It is due to publish full-year results on 21 May.

Back to Home
Source: The Guardian