Marks & Spencer’s cyberattack isn’t an exception - it’s a warning

Marks & Spencer did the right thing by self-reporting its recent cyber incident to the Information Commissioner’s Office (ICO) and the National Cyber Security Centre (NCSC).