Home » Cyberattacks: Marks & Spencer calls for mandatory reporting in the U.K. Cyberattacks: Marks & Spencer calls for mandatory reporting in the U.K. Whilst 27% of British companies were victims of cyberattacks in the last 12 months, some players continue to slip under the radar. As it took nearly four months for Marks & Spencer's e-commerce to return to normal, the Chairman called for a legal reporting requirement, warning of two recent major hacks that had not been detected by the NCSC. Through Sophie Baqué. Published on 11 July 2025 à 15h01 - Update on 21 August 2025 à 13h59 Resources On July 8, the C.E.O of Marks & Spencer (annual revenue at the end of March 2025: 16 billion euros, +6%) asked British MPs for a legal requirement for companies to report major cyberattacks. According to Archie Norman, two cyberattacks involving “major British companies” that occurred in the last 4 months were not reported to the UK’s National Cyber Security Centre (NCSC).… Sophie Baqué Co-opcyber securityDigital and omnichannelHarrodsMarks & SpencerransomwareRetailRetailer and e-commerce Read more After supermarkets and fashion, Dior and Cartier are now the target of cyber attacks At Marks &Spencer, cyber attack brings e-commerce to a standstill Cyber insurance: Stoïk sets course for Spain The major retail and e-commerce trends of 2025 Cyberattack: 45,000 Picard customers' data compromised
