For retail, cyber resilience is now a frontline business imperative.
This year's cyber attack on Marks & Spencer (M&S) is a stark reminder of how fragile digital ecosystems can be, and how quickly customers' trust can evaporate when security fails.
The M&S breach: A case study in vulnerable supply chains
Hackers didn't breach M&S directly. Instead, the entry point was a third-party supplier whose systems were compromised through sophisticated phishing and social engineering tactics.
The attackers – identified as the cyber-crime group Scattered Spider – manipulated the supplier's IT staff into resetting credentials, which effectively handed over access to M&S's digital infrastructure.
The fallout was severe: