M&S Confirms Customer Data Breach in Cyber Attack, No Payment Details Affected

Major Retailer Suffers Data Theft but Assures No Card or Password Compromise

• Marks and Spencer confirms customer data stolen in cyber attack
• No usable payment or card details were affected
• Account passwords not compromised
• No evidence of data being shared

Marks and Spencer (M&S) has informed customers that some of their personal data was stolen during a significant cyber attack last month. However, the company stated that no usable payment or card details were affected as they are not stored on its systems. Additionally, account passwords remained secure. M&S also mentioned there is no evidence to suggest the stolen data has been shared.

Factuality Level: 10
Factuality Justification: The article provides accurate information about the cyber attack on Marks and Spencer, clearly stating what type of data was stolen and what types of data were not affected. It also mentions that there is no evidence of the stolen data being shared.
Noise Level: 7
Noise Justification: The article provides relevant information about a cyber attack on Marks and Spencer and the stolen personal data, but it lacks depth and analysis. It does not explore long-term trends or possibilities, hold powerful people accountable, provide actionable insights, or support its claims with evidence.
Financial Relevance: Yes
Financial Markks Impacted: No
Financial Rating Justification: The article discusses a cyber attack on Marks and Spencer, which is a company, but there is no mention of any direct impact on financial markets or specific companies. The stolen data does not include usable payment or card details, so the financial aspect is related to the potential consequences for the company’s reputation and customer trust.
Presence Of Extreme Event: Yes
Nature Of Extreme Event: h. Technological Disruption (cyber-attacks, major service outages, data breaches, etc.)
Impact Rating Of The Extreme Event: Moderate
Extreme Rating Justification: A cyber attack occurred on Marks and Spencer’s systems, resulting in the theft of some customer data. However, it did not include usable payment details or account passwords, and there is no evidence that the data has been shared. The impact is rated as moderate due to the potential risk to personal information but not including sensitive financial data.

www.retailsector.co.uk