What can I buy online at M&S since the hack?

Marks & Spencer has started taking some online orders again, as it continues to recover from a major cyber-attack.

The firm put orders on pause in late April, and has said it would be July before they were back to normal.

It has told customers to remain cautious about receiving emails, calls or texts claiming to be from M&S, after some customer data was stolen in the attack.

As well as disrupting its online business, the hack affected the company in-store too, leaving some shelves bare in the days after M&S was targeted.

Here's what we know about the attack and the impact it is still having.

M&S announced on June 10 that a small selection of fashion products were now available online for home delivery.

But these are only for customers in England, Wales and Scotland.

M&S said orders for people in Northern Ireland will open up "in the coming weeks".

The company has also extended its delivery times to 10 days "in order to manage customer demand".

Click and collect is still not available but will also return soon, the retailer said.

M&S has admitted some personal customer data was taken during the attack.

It says information stolen could include contact details such as people's names, home addresses, phone numbers or email addresses, as well as dates of birth and online order history.

But it does not include useable payment or card details, or account passwords, M&S says.

The retailer will prompt customers to reset passwords for "peace of mind".

It adds that while users do not need to take any action, they should remain alert to possible attempts to extract or misuse their information.

There has been silence from M&S on what or who was behind the attack on its systems, but we now know it was a ransomware attack.

BBC News revealed detectives are focusing on a group of teens and young adults called Scattered Spider.

These are English-speaking hackers, who used an illicit service called DragonForce.

DragonForce operates an affiliate cyber crime service so, for a fee, anyone can use their malicious software and website to carry out attacks and extortions.

BBC News has seen an email sent by DragonForce to M&S chief executive Stuart Machin, gloating about what they had done and demanding payment.

The email was sent apparently using the account of an employee from the Indian IT giant Tata Consultancy Services - which has provided services to M&S for over a decade.

The cyber criminals who targeted M&S have told the BBC they are also responsible for the ransomware attack on Co-op and the attempted hack of Harrods.

Ransomware is a type of malicious software used to scramble important data or files after gaining access to a business' computer systems, essentially locking them away unless a ransom is paid.

Hackers often threaten to leak or sell the data to pressure a business to pay up.

The National Cyber Security Centre (NCSC) has warned that criminals launching cyber attacks at British retailers are impersonating IT help desks to break into organisations.

M&S boss Stuart Machin confirmed the hackers got in through "social engineering" - when they pretend to be someone trustworthy, and trick an employee into giving out passwords or login access.

He said this was done through a third party that had access to M&S systems.

• What is ransomware and how does it work?
• 'They wanted $4m': Lessons for M&S from other cyber attacks
• M&S hackers sent abuse and ransom demand directly to CEO

M&S estimates the cyber attack will reduce profits for the current year by around £300m - which is more than analysts had expected and the equivalent of a 30% hit to profits.

But it hopes some of this will be covered by insurance.

Online accounts for about a third of M&S's clothing and home sales. On average, £3.8m is spent on clothing and home products on its website and apps every day.

Faced with the website problems, it's possible customers may have gone to an M&S store to buy something, but it's also likely that shoppers have turned to rival online retailers instead.

The problems have coincided with a period of warmer weather, when people are likely to want to buy new summer clothes.

Jackie Naghten, a business consultant who has worked with big retailers including M&S, Arcadia and Debenhams, told the BBC: "It's absolutely costing them fortunes."

The company's share price has also dropped since the attack.

One of Marks & Spencer's biggest suppliers told the BBC it had resorted to using pen and paper for orders.

The boss of Greencore, which supplies sandwiches, rolls and wraps, said it had also ramped up deliveries by a fifth to make sure there was more than enough food for the bank holiday weekend.

Thea Green, chief executive of beauty brand Nails Inc, said her company had a major launch coming up and she was nervous about it, given the problems at M&S.

"It does have an impact on us - but it's a single-digit percentage of our business, so it's not a major impact. But they are a very relevant UK customer," she said.

Meanwhile, M&S has also had to manage disruption to a small proportion of products that it supplies to Ocado, which delivers M&S online food orders and which is part-owned by M&S.

Additional reporting by Imran Rahman-Jones.

Sign up for our Tech Decoded newsletter to follow the world's top tech stories and trends. Outside the UK? Sign up here.