Marks & Spencer has announced that its online services will remain disrupted until at least July, following a highly sophisticated cyber-attack that struck the retailer over the Easter weekend. The incident initially impacted click-and-collect services and contactless payments before escalating to a full suspension of online ordering. A few days later, the company placed a banner on its website apologizing for the outage. Chief executive Stuart Machin stated, “Over the last few weeks, we have been managing a highly sophisticated and targeted cyber-attack, which has led to a limited period of disruption.”
The retailer has assured customers that it is working diligently to restore its digital infrastructure and expects a phased return to normal operations. “We expect online disruption to continue throughout June and into July as we restart, then ramp up operations,” M&S said in an official statement. The company is prioritizing system security and reliability before fully relaunching its e-commerce platform, acknowledging that recovery will take time due to the complexity of the breach.
Financially, the cyber-attack is projected to cause significant losses, with M&S estimating a £300 million hit to this year’s profits — a figure that surpasses analysts’ expectations and represents nearly a third of the retailer’s anticipated earnings. While M&S may receive a partial insurance payout, the compensation is not expected to fully offset the financial blow. The incident marks a major challenge for one of the UK’s leading retailers as it continues navigating a rapidly evolving digital landscape.
