View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
October 28, 2015

Security breach forces M&S website offline

News: Yet another security issue hitting a high-profile UK company.

By James Nunns

Marks & Spencer was forced to suspend its website after an apparent security breach.

The breach resulted in customers being able to see other people’s details when they logged into their accounts.

M&S said that customers may have been able to see the last four digits of another person’s payment card, "for a brief moment."

The retailer blamed the problem on a "technical issue" which resulted in it suspending its site.

A spokesperson said: "This allowed us to thoroughly investigate and resolve the issue and quickly restore service for our customers. We apologise to customers for any inconvenience caused."

The website was taken down at around 6:30pm on Tuesday night and restored by 9pm.

Keith Poyser, MD, EMEA, Accellion, said: From Sony to TalkTalk, this issue continues to rear its ugly head, yet cyber security is still not ingrained at every level of UK organisations’ cultural mindset.

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

"That means cyber security must reach everything and everyone, from the latest tech to even the savviest employee."

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.