Retail giant Marks and Spencer have confirmed some customers’ personal data was taken by hackers during their recent cyber attack, and they have encouraged all customers to reset their account passwords.
Marks and Spencer have urged customers to reset their passwords after confirming customers’ personal data was taken by hackers.
The retail giant was recently hit by a huge cyber-attack, but Marks and Spencer CEO Stuart Machin has insisted “usable payment or card details” were not stolen by hackers, because the company “do not hold [such details] on our systems”.
Marks and Spencer have also stressed there is no evidence that passwords have been shared, but M+S account holders are being encouraged to change their security details.
Stuart said: “To give customers extra peace of mind, they will be prompted to reset their password the next time they visit or log on to their M S account and we have shared information on how to stay safe online.”
Tim Grieveson, chief security officer at ThingsRecon, has warned M+S customers to look out for phishing emails from potential scammers, following the Marks and Spencer cyber-attack.
He told Sky News: “With simple data such as names, email addresses, and potentially other personal details like addresses or phone numbers, which have been reported as accessed, attackers can use this information to create highly targeted and convincing phishing emails or text messages.
“These emails from attackers can appear very legitimate because they use real personal information.”
Marks and Spencer confirm customers’ personal data taken in cyber attack
