A significant IT outage that has affected M&S – Marks & Spencer for nearly a week has had detrimental effects on the company. According to analysts, the incident has resulted in a £678 million (about $940 million) decline in the retailer’s market value. Since April 22, the value of the FTSE 100 company’s shares has dropped by about 7%.
Online sales of apparel and home goods, which brought in £1.27 billion last year, or almost £3.5 million every day, have been particularly badly hit by the incident. On April 25, the company shut down its online store and sent 200 temporary employees home from its distribution center in Leicestershire. In certain stores, click-and-collect was discontinued and contactless payments were no longer accepted.
Lack of Clarity in Service Restoration
The business admitted that it was impossible to forecast when regular service would return. Customer care claims that it is “unknown when the service will be back up and running,” despite the fact that some customers have already received notifications of delays. According to officials, there is no cause for concern over the compromise of client data.
The incident raises suspicions of a common ransomware attack pattern among specialists. Attorney Andrew Northage claims that indicators of an extortion attempt include orders not being fulfilled and transactions being blocked. He pointed out that the business is probably currently attempting to determine whether the attack was carried out to obtain publicity or to demand a ransom.
Under CEO Stuart Machine, the company’s ambitious relaunch plan is in danger of failing due to the current circumstances. M&S is scheduled to release its current year’s results on May 21. Last year, the company reported a pre-tax profit of £716 million. Analysts now worry that competitors like John Lewis and Next might momentarily take market share.
No Further Comments by M&S
As mandated by law, the shop notified the UK Data Protection Office (ICO) of the issue and is collaborating with the UK’s National Cybersecurity Centre. The regulation mandates that businesses report a possible data breach to the ICO within 72 hours of learning about it.
Executives at M&S have refrained from any additional commentary, and it is still unknown how the attack will impact the company’s reputation. As long as the cyber threat does not lead to a significant data leak, researchers say the short-term issues are unlikely to produce long-term harm.
