Wilson's Media

A Tech & Gaming Blog

M&S CEO directly targeted by hackers demanding ransom payout

  • Marks and Spencer CEO received communication from a ransom gang
  • This follows a devastating attack earlier in 2025
  • The email confirms a link between the M&S and Co-op attacks

Marks and Spencer was amongst the British retailers that suffered devastating cyberattacks earlier in 2025, with services and stores facing disruption, as well as online orders being suspended.

In the midst of all this, reports from the BBC claim company CEO Stuart Machin was personally sent emails by the attackers goading him and inviting him to begin negotiating the ransom fee.

“We have marched the ways from China all the way to the UK and have mercilessly raped your company and encrypted all the servers,” the hackers wrote. “The dragon wants to speak to you so please head over to [our darknet website].”

“Let’s get the party started”

The group, who call themselves “DragonForce” also claimed responsibility for the Co-op attack, which came around a similar time – making this email the first official link between the two incidents.

Little is known so far about the group themselves, but the emails confirm this was a ransomware attack, something that M&S have so far refused to comment on.

It was sent through a London-based Tata Consultancy Services (TCS) employee, and it appears as though this employee was also hacked as part of the wider attack – and the Indian IT service is investigating whether it was the origin for the M&S cyberattack.

The email indicated a knowledge of the firm’s cyber insurance, taunting the firm; “we know we can both help each other handsomely : ))”. The email also contained a link to begin ransom negotiations; “let’s get the party started. Message us, we will make this fast and easy for us.”

We reached out to Marks and Spencer for comment, which it declined, offering the following;

“We cannot comment on details of or speculation on the cyber incident, and we have been advised not to.”

You might also like


Source

Marks and Spencer CEO received communication from a ransom gang This follows a devastating attack earlier in 2025 The email confirms a link between the M&S and Co-op attacks Marks and Spencer was amongst the British retailers that suffered devastating cyberattacks earlier in 2025, with services and stores facing disruption,…

Tags: ,
Previous Post

Leave a Reply

Your email address will not be published. Required fields are marked *

Recent Posts

Archives