Thousands of Customers’ Names, Addresses, Birthdays and Other Info Leaked in Cyber Attack on Retail Giant: Report - The Daily Hodl

Retail giant Marks & Spencer says cybercriminals have obtained sensitive personal information from its customers after a sudden hack.

The British company, valued at $9.67 billion with store locations in over 62 countries, acknowledged the hack to the London Stock Exchange.

In a separate statement, a Marks & Spencer executive in charge of customer service went into more detail about the breach.

“The personal data could include contact details, date of birth and online order history.

However, importantly, the data does not include useable card or payment details, and it also does not include any account passwords.”

M&S also warns customers that they may “receive emails, calls or texts claiming to be from M&S when they are not, so do be cautious.”

The number of customers affected is at least in the thousands, reports The Guardian. Marks & Spencer has at least 9.4 million online customers as of March 30th, 2024.

The incident appears to be connected with a broader operation by a hacking group known as “DragonForce,” which has also claimed responsibility for a breach of the Co-op Food grocery chain, also in the UK.

Hackers from the group recently reached out to the BBC and reportedly gave proof that they had breached Co-op’s IT networks and “stolen huge amounts of customer and employee data.”

The group reportedly showed BBC screenshots from a Microsoft Teams chat where the group told Co-op’s head of cyber security that the company was being extorted.

The screenshots reportedly showed the hackers telling Co-op,

“Hello, we exfiltrated the data from your company. We have customer database, and Co-op member card data.”

Responses to both incidents are still ongoing.

Follow us on X, Facebook and Telegram

Don't Miss a Beat – Subscribe to get email alerts delivered directly to your inbox

Check Price Action

Surf The Daily Hodl Mix

Generated Image: Midjourney