CSTI
    breachThe Ransomware Era (2020-Present) Daily Briefing Landmark Event

    Major Cyber Attack on Marks and Spencer Disrupts Operations

    Wednesday, April 2, 2025

    Major Cyber Attack on Marks and Spencer Disrupts Operations

    Today, Marks and Spencer, a major British retailer, is grappling with severe operational disruptions following a cyberattack that has compromised its online ordering and in-store payment systems. The attack has resulted in postponed deliveries and halted online transactions, significantly impacting customer service and operational efficiency. While the retailer has not disclosed specific details about the breach or the threat actors involved, the incident highlights the vulnerabilities retailers face in an increasingly digital landscape. Organizations must learn from this incident to bolster their defenses against similar threats in the future.

    Also In Security Today

    • Oracle Cloud Breaches: Oracle reported multiple breaches affecting its legacy systems, potentially exposing millions of files. Despite Oracle’s assurances of no major threat to its cloud infrastructure, concerns about data security remain high. Read more.
    • Yale New Haven Health Data Breach: A data breach linked to third-party vendor vulnerabilities has affected approximately 5 million individuals, exposing sensitive personal information. This incident underscores the risks associated with third-party dependencies. Read more.
    • Kellogg Ransomware Incident: The Clop ransomware group exploited zero-day vulnerabilities in a recent breach, leaking sensitive employee data. This incident serves as a reminder of the evolving tactics employed by ransomware actors. Read more.
    • Active Vulnerabilities: A critical zero-day vulnerability in SAP NetWeaver (CVE-2025-31324) has been actively exploited, allowing privileged system access. Organizations must address this vulnerability immediately to mitigate risks. Read more.

    Analyst's Take

    Today's events reflect a troubling trend in the cybersecurity landscape, particularly for retailers and organizations relying on digital transactions. The Marks and Spencer incident, alongside the breaches at Oracle and Yale New Haven Health, illustrates the critical need for robust security measures and incident response strategies. Defenders should prioritize patching vulnerabilities like CVE-2025-31324 and consider adopting a zero-trust architecture to minimize risks. As ransomware groups evolve their tactics, organizations must remain vigilant and adapt quickly to counter these threats effectively.

    Sources

    cyberattack retail data breach ransomware vulnerabilities