Originally published at Network Computing
The recent Marks & Spencer cybersecurity incident, which reportedly could cost the company up to £300 million in lost profits, is undoubtedly one of the most significant cyberattacks on the retail sector so far this year. And for many businesses, it has served as a stark reminder that no organisation is immune to today’s cyber threats, regardless of size or market influence, and that all customer data demands robust, consistent protection.
In a recent thought leadership piece for Network Computing, Jon Lucas, Director and Co-Founder of Hyve Managed Hosting, takes a detailed look at the M&S data breach and other high-profile cyber incidents affecting retailers this year. Jon uses these incidents as examples to explain how businesses can strengthen their defences, respond effectively to attacks and take practical steps to minimise the impact of damage.
In the article, Jon Lucas stresses that online retailers can build the resilience needed to withstand attacks without disrupting operations or eroding customer trust – the foundation of every sale – by investing in layered defences, practising crisis response and promoting security awareness throughout the workforce.
Key quotes from the article:
“The data breach at M&S serves as a clear reminder that no organisation is entirely immune to cyber threats and that all types of customer data demand strong, consistent protection”.
“Attackers also know that the quickest route past expensive perimeter tools often starts inside each business: a hurried email clicked by a seasonal employee, an overlooked misconfiguration in a loyalty app update, or a manager who reuses passwords while working remotely. Hybrid working has scattered access points far beyond the traditional store or head office, making continuous monitoring harder.”
“Because eliminating risk is impossible, the goal shifts to limiting damage and keeping legitimate trade moving.”
“Sometimes the most effective containment measure is a deliberate shutdown. For a retailer, pausing central systems can allow individual branches to keep trading on local platforms while investigators work, preventing attackers from burrowing deeper and limiting financial loss.”
“By investing in layered defences, practising crisis response and embedding security awareness across the workforce, retailers give themselves the resilience to absorb attacks without derailing day-to-day business or the trust that underpins every sale.”
Read the full article here.

