Whilst 27% of British companies were victims of cyberattacks in the last 12 months, some players continue to slip under the radar. As it took nearly four months for Marks & Spencer's e-commerce to return to normal, the Chairman called for a legal reporting requirement, warning of two recent major hacks that had not been detected by the NCSC.
On July 8, the C.E.O of Marks & Spencer (annual revenue at the end of March 2025: 16 billion euros, +6%) asked British MPs for a legal requirement for companies to report major cyberattacks. According to Archie Norman, two cyberattacks involving “major British companies” that occurred in the last 4 months were not reported to the UK’s National Cyber Security Centre (NCSC). As in France, British companies must report any personal data breaches to the Information Commissioner’s Office within 72 h
…Do you have information to share with us?
Article authors