Marks & Spencer, a major British retail giant, has been in a digital hell for over a week due to a cyberattack by the group Scattered Spider.

The group, also known as UNC3944, Muddled Libra, Star Fraud, and Oktapus, is a well-known cybercriminal group made up of young people from the United States and the UK.

They have been involved in major cyberattacks, including those against companies like MGM Resorts and Caesars Entertainment in 2023.

Scattered Spider uses tactics such as phishing, impersonating IT support staff, and SIM swapping to gain unauthorized access to corporate systems. Despite some members being arrested, the group remains dangerous.

The company had no protocol or plan B, leading to chaos and broken communication. Internal communication collapsed, with no Teams, emails, or WhatsApp, creating a paranoid atmosphere.

The disaster won’t be fixed in two days, and M&S plans to bring services back gradually to avoid leaving the door open again. Customers are getting only a standard apology for working “day and night” to fix it.

The attack on M&S is not an isolated case; Harrods and the Co-op Group have also been victims of cyberattacks. The British government issued an urgent warning, emphasising the importance of cybersecurity in 2025.

Employees pay the price for the damage to the brand image and financial losses, as they work non-stop, with no clear information, and bearing the stress of a company that simply wasn’t prepared.

In 2025, not having a plan for a cyberattack is like not having fire extinguishers in a building. If it does happen, either have a plan or face chaos. M&S is learning it the hard way, and their employees are paying for it upfront.