M&S apologises over leaked customer data

Marks & Spencer has apologised to its customers after a technical glitch on its website meant that their personal details were exposed online.

The British retailer temporarily suspended its website on Tuesday evening when customers complained on the chain’s Facebook page that they could see each other’s orders and payment details.

Shopper Debbie Dilks called the issues appalling. “I have just found the name address email address date of birth and mobile and land line number of a lady I have never met,” she added.

Story continues below

Fellow customer Vanessa Frost said: “There seems to have been a data breach on your M&S website – if I log into my account on there it brings up another person’s details – this is happening to loads of people.”

M&S said the glitch was due to an internal error rather than a third party attack on the website.

"Due to a technical issue we temporarily suspended our website for a period [on Tuesday] night," the firm said in an official statement.

"This allowed us to thoroughly investigate and resolve the issue and quickly restore service for our customers.

"We apologise to customers for any inconvenience caused."

The retailer added that no financial data had been extracted. However, personal data, including names and contacts were exposed.

The website was taken offline at about 6.30pm and was back on by 9pm on Tuesday.

"We can confirm that around 800 people were affected by a technical issue that led to us temporarily suspending our website yesterday evening," a spokesperson for M&S told the Daily Telegraph.

"We are now writing to every customer affected to apologise and to assure them that their financial details are safe.”



Related posts