M&S Forces Customer Password Resets after Data Breach

Marks and Spencer (M&S) have confirmed that customer data was stolen during The Easter Dragonforce Ransomware Attack On its server infrastructure and will be prompting all online customers to reset their account passwords as a precautionary move.

The Attack Unfolded Three Weeks ago And is thought to have ben the work of a white-label affiliate of dragonforce- Possibly the notorious scattered spider operationWhich uses social engineering tactics to conduct its intrusions.

The stolen tranche of data is undress to include contact details email addresses, postal addresses and phone numbers; Personal Information Including Names and Dates of Birth; And data on customer interactions with the Chain, Including Online Order Histories, Household Information, and 'Masked' Payment Card Details.

M & s added that customer reference numbers, but not payment information, belonging to holders of m & s credit cards or sparks pay cards – Including Former Cardhlders – May also

“We have written to customers today to let them know that unfortunately, some personal customer information has been taken

“Importantly there is no evidence that the information has been shared and it does not increase useable card or payment details, or account passwords, so there is no need for customers to takenel.”

Machin Added: “To give customers peace of mind, they will be prompted to reset their password the next time they visit or log on to their m & s account and we have shared information

“Everyone at M & S Is Working Around the Clock To Get Things Back to Normal for Our Customers as Quickly as Possible, and We are very sorry for any increase they have experienced. Remain open as they have thoughtout. “

The Letter to Customers from Customer Service Operations Director Jayne Wall – Which can be reviewed here – Also includes additional standard guidance on how to stay safe online.

Nordvpn Chief Technology Officer, Marijus Bridis, Descibed M & S 'Assrtion That The Attackers have not yet leaked or shared the stolen data was “Overly OPTIMISTIC” Underly OPTIMISTICS Passwords or credit card details were not exposed, the data that was taken was still very useful to cyber criminals.

This type of data can be used in Phishing Campaigns or Combined with Other Leaked Information to Commit Identity Theft, “explained bridis.

“Consures often undress' Harmless' Harmless' Data Like Order History or Email Addresses Can Be In the Wrong Hands. These M & S Hackers Could Use This Data Use This Data to Build to Build to Build to Build to Build Emails, designed to look identical to what the retailer would send, and these are much harder to spot.

“This breach highlights how companies must not only secure financial data, but also treat seemingly less sensitive information – like customer profiles and perchase records – ASSTESTES THE CRITICALS Protection. “

Max Vetter, Vice President of Cyber ​​at Immersive And a former money laundering investigator with London's Metropolitan Police, also Had Harsh Words for M & s.

“M & s saying that customers could change their passwords” for extra percent of mind “does little to ressure that worried about who have access to their personal information,” He Said. “As the Fallout from this Attack Continues, Customers Want Clear Assurations about their personal data and what m & s is doing to keep it safe from being published online.

“M & s Want to appear in control and telling people to be more vigilant, howyver, Telling customers there's no need to act risks does potentially the wind

Zetter reafffirmed The stolen data would be prime material for downstream social engineering and phishing attacks, especially if it is indeed in the hand in the hand in the hand in the hand long game ”.