Marks and Spencer has confirmed that customer data has been stolen in the recent cyber attack that continues to disrupt services across the UK.
The retailer said the personal information taken included online order histories but not useable payment or card details, or any account passwords.
On Friday, April 25, M&S halted online orders after it reported being a victim of a cyber attack.
It has been estimated that each day their website is offline, M&S loses £3.5m. Half a billion pounds has also been wiped off its share price.
M&S said as part of it’s ongoing efforts customers will be prompted to reset their password the next time they visit or log onto their account “for extra peace of mind”.
Stuart Machin, chief executive of M&S, said there was no evidence to suggest the leaked data has been shared.
“We have said to customers that there is no need to take any action. For extra peace of mind, they will be prompted to reset their password the next time they visit or log onto their M&S account and we have shared information on how to stay safe online.”
He added: “We remain grateful for the support that our customers, colleagues, partners and suppliers have shown us during this time.”
Follow STV News on WhatsApp
Scan the QR code on your mobile device for all the latest news from around the country
