A significant cyberattack targeted Marks & Spencer in April 2025, exposing sensitive customer data globally. This incident underlines the growing vulnerability of retail organizations to digital threats. The breach affects millions of customers and raises concerns about the effectiveness of cybersecurity measures. The investigation involves prominent cybersecurity firms and national agencies as they work to understand the scope of the attack and identify affected individuals. Marks & Spencer has acknowledged the extent of the data compromise, which included contact information and birthdates, while CEO Stuart Machin pledged to notify affected customers. This incident highlights the urgent need for retailers to invest in robust cyber security measures to protect customer data.