- CEO of Marx and Spencer received communication from ransom gang
- It first follows a devastating attack in 2025
- Email confirms a link between M&S and co-op attacks
Marx and Spencer were among the British retailers who faced the first disastrous cyber attack in 2025, facing disruption of services and shops, as well as online orders were suspended.
In the middle of all this, report from BBC Claims Company CEO Stuart Machin was personally sent emails by the attackers and invited them to start a ransom fee.
Hackers wrote, “We have marched from China to the UK and have mercilessly raped and encrypted all the servers.” “Dragon wants to talk to you, so please go to (our dark website).”
“Let’s start the party”
The group, which calls themselves “dragonforce”, also claimed responsibility for the -up attack, which came around the same time – making this email the first official link between two incidents.
Little is still known about the group itself, but email confirms that it was a ransomware attack, something that M&S ​​has refused to comment so far.
It was sent through London -based Tata Consultancy Services (TCS) employee, and it appears that the employee was also hacked as part of a comprehensive attack – and the Indian IT service is investigating if it was original for the M&S cyber attack.
Email indicated the firm’s knowledge of cyber insurance, taunting the firm; “We know that both of us can help each other :))”. Email also had a link to start ransom talks; “Let’s start the party. Give us the message, we will make it easier and easy for us.”
We reached Marx and Spencer for comment, which he declined, offered the following;
“We cannot comment about details or speculation on cyber phenomena, and we are not advised.”
