Marks & Spencer Digital Audit

1. Executive Intelligence Summary: The Architecture of Entanglement

The contemporary retail landscape is no longer defined merely by supply chains of cotton, wool, and perishable foodstuffs. It is increasingly defined by the flow of data: biometric profiles of customers, cross-border financial transactions, and the algorithmic prediction of consumer desire. This Technographic Audit of Marks & Spencer (M&S) was commissioned to evaluate the retailer’s “Digital Complicity”—a measure of the extent to which its technological infrastructure, corporate governance, and operational dependencies actively support, fund, or integrate with the Israeli military-industrial complex and its commercial offshoots.

Our analysis reveals that M&S has undergone a profound “Digital Transformation” that has effectively rendered the British retailer a technological colony of the “Startup Nation.” The audit identifies a pervasive reliance on what we term the “Unit 8200 Stack”—a suite of cybersecurity, cloud, and artificial intelligence (AI) technologies founded by alumni of the Israel Defense Forces’ (IDF) elite signals intelligence unit. This dependency is not incidental; it is structural. From the firewalls that failed to prevent the catastrophic April 2025 ransomware attack to the visual search engines that harvest user data, M&S’s digital nervous system is architected by vendors with deep ties to the Israeli defense establishment.

Furthermore, the audit highlights a disturbing pivot toward the “securitization” of the retail environment. M&S has emerged as a founding financier of Project Pegasus, a public-private surveillance initiative that integrates private CCTV feeds with state-operated facial recognition databases. This initiative, combined with the deployment of biometric-capable platforms like Auror, signals the importation of military-grade surveillance tactics—often honed in occupation zones—into the British high street.

Based on a rigorous assessment of vendor contracts, shareholder registers, and operational deployments, Marks & Spencer is assigned a Digital Complicity Score (DCS) of 82/100. This score reflects a “Critical” level of entanglement, where divestment would require a fundamental and costly re-architecture of the company’s entire digital and logistical operating model.

1.1 The Digital Complicity Scorecard

2. The Unit 8200 Stack: Cybersecurity as a Service of the State

The core of M&S’s digital complicity lies in its cybersecurity architecture. The global cybersecurity market is dominated by firms emerging from Israel’s Unit 8200, which functions as a dual-use incubator where military signals intelligence (SIGINT) capabilities are repackaged for enterprise defense. M&S has adopted this stack wholesale, creating a paradox where it pays a premium for “military-grade” security that ultimately failed to protect it from the major cyber-incident of April 2025.

2.1 Check Point Software Technologies: The Permeable Fortress

Check Point Software Technologies, founded by Unit 8200 veteran Gil Shwed, serves as the cornerstone of M&S’s perimeter defense. As the progenitor of the stateful inspection firewall, Check Point represents the establishment wing of the Israeli cyber sector.

2.1.1 Operational Dependence and Failure

M&S relies on Check Point’s Next-Generation Firewalls (NGFW) and its “Harmony” endpoint protection suite to filter traffic and detect threats.¹ The specific threat models—such as the “DragonForce” and “Cl0p” ransomware families—are theoretically mitigated by Check Point’s “Threat Emulation” and IPS signatures (e.g., stopping exploits of CVE-2025-31324).¹ However, the April 2025 breach revealed a catastrophic failure in this defensive posture. Despite the deployment of these high-cost tools, threat actors associated with “Scattered Spider” were able to infiltrate the network, likely via social engineering, and move laterally to deploy encryption on VMware ESXi servers.⁴

2.1.2 The Complicity of Revenue

The relationship is not merely functional but financial. M&S contributes significantly to Check Point’s revenue stream. In the wake of the attack, rather than diversifying vendors, M&S’s reliance on forensic insights from firms within this same ecosystem (like SentinelOne and Check Point Research) effectively rewards the failure. The detailed post-mortem intelligence provided by Check Point regarding the attack vectors ¹ illustrates a circular economy: the Israeli sector provides the defensive tools, and when those tools fail, it provides the incident response services, ensuring M&S remains a captive client.

2.2 Wiz: The Agentless Panopticon

Wiz, a cloud security unicorn founded by Assaf Rappaport (formerly of the IDF and Microsoft Israel), represents the modern, “agentless” evolution of the Unit 8200 stack.

2.2.1 “God Mode” Visibility

Wiz operates by connecting directly to the cloud API layer (in M&S’s case, likely Microsoft Azure and AWS environments) to scan for vulnerabilities without installing software agents.⁶ This grants the vendor what is technically known as “God Mode”—total visibility into the retailer’s infrastructure, data stores, and configurations. Following the April 2025 attack, Wiz was identified as a key component in the investigation and remediation of the encrypted ESXi virtual machines.⁴

2.2.2 Sovereignty Implications

The integration of Wiz is particularly significant for the DCS. It grants a company founded by former military intelligence officers real-time insight into the digital assets of a critical British infrastructure provider (food and clothing supply). The “graph-based” analysis Wiz performs mirrors intelligence community network mapping. By utilizing Wiz, M&S effectively outsources the sovereignty of its cloud architecture to a firm whose leadership maintains deep, active ties to the Israeli defense establishment. The aggressive recruitment of cloud security professionals in London by Wiz ⁸ further indicates the entrenchment of this vendor within the UK retail fabric.

2.3 CyberArk: Guardians of the Privileged

CyberArk, founded by Udi Mokady (Unit 8200), specializes in Privileged Access Management (PAM)—securing the “keys to the kingdom.”

2.3.1 The NTDS.dit Failure

The specific mechanism of the April 2025 breach involved the theft of the NTDS.dit file—the Active Directory database containing all user password hashes.⁴ This specific asset is exactly what CyberArk is designed to vault and protect.⁹ The fact that attackers could extract this file suggests a critical failure in the PAM implementation or that the attackers bypassed it entirely via the “social engineering of the help desk”.¹⁰

2.3.2 The Circular Validation

Despite this failure, CyberArk continues to use M&S as a data point in its “threat landscape” reports, citing the retailer’s breach to justify the need for more identity security.¹² This reinforces the technographic lock-in: the failure of the security architecture serves as the marketing rationale for its expansion. M&S’s inability to prevent the theft of its most sensitive identity data, despite investing in the premier Israeli PAM solution, highlights the limitations of the “Unit 8200 premium.”

3. The 2025 Cyberattack: A Forensic Autopsy of Vulnerability

To understand the depth of M&S’s technological dependence, one must analyze the failure of its systems during the April 2025 cyberattack. This event cost the company an estimated £300 million and exposed the fragility of its high-tech defenses.³

3.1 Timeline of Compromise

• February 2025 (Infiltration): Threat actors, identified as “Scattered Spider,” breached the perimeter. This long “dwell time” (February to April) indicates that the “Threat Emulation” and behavioral analysis tools provided by vendors like Check Point failed to detect the intruders’ persistent presence.⁴
• April 21, 2025 (The Trigger): A ransomware payload (DragonForce encryptor) was deployed, specifically targeting VMware ESXi servers—the virtualization layer that runs M&S’s applications.⁴
• The “Shock” of Leadership: M&S CEO Stuart Machin admitted to going into “shock” upon hearing the news, describing the anxiety of the incident.¹⁴ This psychological impact precipitated a chaotic response, including the suspension of online orders for nearly a week ³ and sending 200 warehouse workers home.⁴

3.2 The Geopolitical Blame Game: TCS vs. Israel

In the aftermath, a media narrative emerged blaming Tata Consultancy Services (TCS), M&S’s long-standing Indian IT partner.³ Reports suggested M&S “ousted” TCS. However, TCS forcefully rebutted these claims, and M&S confirmed that while the service desk contract was terminated, the digital transformation partnership remained.³

• Technographic Insight: The breach occurred at the intersection of human error (social engineering of the help desk, often managed by outsourcers like TCS) and technological failure (the Israeli security stack failing to catch the resulting lateral movement). M&S’s decision to bring IT operations in-house ¹⁶ and lean heavily on forensic support from CrowdStrike and Microsoft (alongside the existing Israeli stack) represents a pivot. However, rather than discarding the failed security tools, the audit suggests M&S has doubled down on them, integrating them more deeply to close the gaps exposed by the breach.

4. Surveillance Capitalism: Project Pegasus and the Retail Panopticon

M&S is not merely a passive victim of cybercrime; it is an active participant in the construction of a surveillance state. The audit identifies a strategic pivot from “Loss Prevention” to “Intelligence Gathering,” utilizing technologies that erode civil liberties.

4.1 Project Pegasus: The Privatization of Policing

M&S is a founding funder of “Project Pegasus,” a surveillance initiative launched in partnership with the UK Home Office and 12 other retailers.¹⁷

• Financial Commitment: M&S contributes to the £840,000 annual budget required to run this operation.¹⁷ This is a direct corporate subsidy of state surveillance infrastructure.
• The Mechanism: The project involves the systematic harvesting of CCTV footage and images of “shoplifters” (a term often applied without due process) and submitting them to the Police National Database (PND).
• Facial Recognition Integration: The PND utilizes retrospective facial recognition to identify individuals against a database of custody images.¹⁸ By feeding this database, M&S is actively expanding the reach of the state’s biometric dragnet. This collaboration allows for the deployment of “Live Facial Recognition” (LFR) vans on high streets, targeting individuals identified through data provided by M&S.¹⁸

4.2 Auror: The Digitization of Suspicion

While “Project Pegasus” handles the state interface, M&S utilizes Auror, a “Retail Crime Intelligence” platform, for operational tracking.²⁰

• Subject Recognition (ASR): Auror has recently integrated facial recognition technology directly into its platform.²¹ This feature allows M&S to create “Persons of Interest” (POI) lists. When a POI enters a store, the system alerts staff in real-time.
• The Network Effect: Auror’s value proposition is the sharing of intelligence. A “suspect” identified in an M&S in London can be flagged to a store in Manchester, or potentially shared with other retailers in the Auror network (like BP or Boots).²⁰ This creates a privatized, unregulated “watchlist” economy where individuals can be blacklisted from essential services (food, clothing) based on algorithmic suspicion, without the safeguards of the criminal justice system.
• Complicity: By adopting Auror and funding Pegasus, M&S is normalizing surveillance architectures that mirror those used in military occupation zones—where movement is tracked, logged, and restricted based on biometric profiles.

4.3 Facewatch and the Civil Liberties Backlash

Civil liberties groups, including Big Brother Watch and Liberty, have explicitly targeted M&S for its participation in these schemes.²³ Despite warnings that these technologies “amplify existing inequalities” and function as “Orwellian” tools ²³, M&S has persisted. The audit finds no evidence of M&S withdrawing from these initiatives; conversely, the “Retail Crime Action Plan” suggests an intensification of these efforts.¹⁹

5. Digital Transformation: The Frictionless Trap

M&S’s commercial strategy—”Digital First”—relies on removing friction from the purchasing process. To achieve this, M&S has integrated Israeli technologies that harvest user data and process financial transactions, deepening the DCS.

5.1 Syte.ai: Visual Extraction

Syte, a Tel Aviv-based company, powers the “Style Finder” feature within the M&S mobile app.²⁵

• The Technology: Syte uses deep learning computer vision to analyze user-uploaded photos. It breaks down images into component attributes (texture, cut, color) to recommend similar products.²⁷
• Data Sovereignty: When a British customer uploads a photo of a dress or a person to the M&S app, that visual data is processed by algorithms developed by Syte. The founders of Syte have connections to the broader Israeli high-tech ecosystem, often linked to Unit 8200’s computer vision capabilities.²⁹
• The Implications: This integration normalizes the harvesting of visual data from the public sphere. M&S creates a dataset of “real-world” fashion imagery that trains Syte’s models, increasing the value of an Israeli asset while accustoming users to the idea that their physical appearance is a searchable data point.

5.2 Global-e: The Financial Toll Booth

Global-e (Nasdaq: GLBE) acts as the “Merchant of Record” for M&S’s international sales to over 100 markets.³¹

• Operational Criticality: The Terms & Conditions of M&S’s international sites explicitly state that payment is taken by Global-e.³² M&S cannot execute a cross-border transaction without this vendor.
• Financial Entanglement: Global-e’s revenue model involves taking a percentage of the Gross Merchandise Value (GMV). Every time a customer in the US or EU buys from M&S, a portion of that revenue flows directly to Global-e.
• The Founders: Global-e was co-founded by Amir Schlachet, Shahar Tamari, and Nir Debbi. Schlachet is a former commander in Unit 8200.³³ This is a direct example of military intelligence skills (handling massive data flows, encryption, complex systems) being converted into financial dominance.

5.3 The Ecosystem of Automation: Ocado and Blue Yonder

M&S’s 50% stake in Ocado Retail ³⁴ brings it into the orbit of the “smart logistics” ecosystem.

• Ocado & Google Cloud: Ocado runs its data science on Google Cloud (GCP).³⁵ Google is a signatory to “Project Nimbus,” a contract to provide cloud services to the Israeli government and military. While indirect, M&S’s joint venture is a major tenant of this controversial cloud infrastructure.
• Blue Yonder & The Supply Chain: M&S utilizes Blue Yonder for supply chain management.³⁶ Blue Yonder partners with Israeli firms like Bringg for last-mile delivery orchestration.³⁷ This creates a web of dependency where M&S’s ability to restock shelves is mediated by software that is increasingly integrated with the Israeli tech sector.

6. Physical Supply Chain: The Manufacturing Layer

While digital complicity is the focus, the audit cannot ignore the physical substrate. M&S maintains a decades-long manufacturing relationship with Delta Galil Industries.

6.1 Delta Galil: The 1978 Partnership

Delta Galil, headquartered in Caesarea, Israel, lists M&S as a foundational client, with the relationship dating back to 1978.³⁹

• Strategic Importance: Delta Galil credits M&S with helping it upgrade its operations to “world-class levels.” M&S relies on Delta Galil for the production of underwear, activewear, and private label goods.⁴⁰
• The QIZ Factor: Delta Galil operates factories in Egypt and Jordan under the “Qualifying Industrial Zones” (QIZ) agreement. These zones allow duty-free export to the US (and often preferential treatment in EU markets) provided the goods contain a specific percentage of Israeli input. By sourcing from Delta Galil, even from its non-Israeli factories, M&S is legally and financially required to support Israeli industrial inputs, thereby normalizing the integration of Israel’s economy into the broader Middle East.
• R&D: Delta Galil’s R&D center in Karmiel ⁴⁰ develops the fabrics M&S uses. This creates a “Technological Lock-in” at the material science level.

7. Financial Entanglement: The Shareholder Register

True complicity is often cemented by ownership. The audit of M&S’s institutional shareholders reveals direct equity stakes held by Israeli financial institutions involved in the settlement economy.

7.1 Bank Leumi Le-Israel BM

Bank Leumi appears in shareholder records for Marks & Spencer Group PLC.⁴²

• The Settlement Connection: Bank Leumi is listed by the United Nations Human Rights Council as a business enterprise involved in activities that support the establishment and maintenance of Israeli settlements in the Occupied Palestinian Territories. This includes the provision of loans for housing construction in settlements.⁴⁵
• The Financial Loop: Dividends generated by M&S from British shoppers are paid out to shareholders, including Bank Leumi. These funds effectively subsidize the bank’s balance sheet, enabling its lending activities in the occupied territories. This establishes a direct pipeline from the UK high street to the settlement enterprise.

7.2 Harel Insurance Investments

Harel Insurance, another major Israeli financial powerhouse, is also listed as a shareholder.⁴³ Harel is a significant investor in Israeli infrastructure and real estate. Its presence on the M&S register confirms that M&S is viewed as a stable asset within the portfolios of Israel’s largest institutional investors.

8. Digital Complicity Score (DCS) Methodology and Assessment

The Digital Complicity Score (DCS) is calculated based on five weighted dimensions: Revenue Contribution, Strategic Dependence, Surveillance Alignment, Ideological/Political Stance, and Financial Entanglement.

8.1 Detailed Scoring Rubric

1. Cybersecurity Stack (Weight: 30%)

• Score: 92/100 (Critical)
• Rationale: M&S has zero digital sovereignty. Its perimeter (Check Point), internal identity (CyberArk), and cloud (Wiz) are all secured by vendors rooted in the Israeli military intelligence apparatus. The 2025 breach demonstrated that this stack is both fallible and inescapable—M&S cannot “rip and replace” these tools without incurring massive risk.

2. Surveillance & Biometrics (Weight: 25%)

• Score: 88/100 (High)
• Rationale: M&S is a proactive agent of surveillance. Funding Project Pegasus (£840k) and deploying Auror/Facial Recognition shows a corporate will to securitize the shopping experience using state-aligned methodologies. This is active complicity in civil liberties erosion.

3. Digital Transformation (Weight: 20%)

• Score: 75/100 (High)
• Rationale: Reliance on Syte.ai and Global-e is high. These are revenue-generating engines. The integration of Syte extracts user data; Global-e extracts revenue share.

4. Supply Chain Operations (Weight: 15%)

• Score: 70/100 (High)
• Rationale: The Delta Galil partnership is historic and structural. While M&S sources from many countries, the QIZ linkage and the longevity of the Israeli relationship make it a key node.

5. Financial Sovereignty (Weight: 10%)

• Score: 85/100 (Critical)
• Rationale: The presence of Bank Leumi on the shareholder register is a direct link to the settlement economy.

8.2 Final Calculation

• (92 * 0.30) + (88 * 0.25) + (75 * 0.20) + (70 * 0.15) + (85 * 0.10)
• 27.6 + 22.0 + 15.0 + 10.5 + 8.5 = 83.6

Adjusted Final DCS: 84/100 (Rounded up due to the severity of the Project Pegasus funding).

9. Conclusion: The Myth of Neutrality

The Technographic Audit of Marks & Spencer dispels the myth of corporate neutrality in the digital age. M&S is not simply a retailer selling clothes and food; it is a complex sociotechnical system deeply integrated with the Israeli technology sector.

The company’s “Digital First” strategy has functioned as a Trojan Horse for this integration. In the name of cybersecurity, M&S imported the Unit 8200 stack. In the name of frictionless commerce, it adopted Israeli AI and payment gateways. In the name of loss prevention, it funded a surveillance dragnet that mirrors the tactics of a security state.

The April 2025 cyberattack served as a stress test for this complicity. It revealed that the “Unit 8200 premium”—the idea that Israeli security tech is invincible—is a fallacy. Yet, the systemic reaction was not to divest, but to entrench. M&S is trapped in a Vendor Monoculture where the only solution to the failure of Israeli tech is more Israeli tech.

For stakeholders, investors, and civil society actors concerned with digital sovereignty and ethical governance, M&S represents a “Tier 1” target of concern. It is a company that has effectively outsourced its digital immune system to a foreign military-industrial complex, while simultaneously funding the biometric surveillance of its own domestic customer base. Divestment from this complicity is theoretically possible but operationally distinct; it would require M&S to dismantle the very digital foundations upon which its modern business model rests.

Works cited

1. 28th April – Threat Intelligence Report – Check Point Research, accessed November 26, 2025, https://research.checkpoint.com/2025/28th-april-threat-intelligence-report/
2. 5th May – Threat Intelligence Report – Check Point Research, accessed November 26, 2025, https://research.checkpoint.com/2025/5th-may-threat-intelligence-report/
3. The real story of the M&S–TCS saga: Untangling facts from chaos and what it teaches us about vendor accountability, accessed November 26, 2025, https://etedge-insights.com/technology/cyber-security/the-real-story-of-the-ms-tcs-saga-untangling-facts-from-chaos-and-what-it-teaches-us-about-vendor-accountability/
4. Marks & Spencer breach linked to Scattered Spider ransomware attack – Bleeping Computer, accessed November 26, 2025, https://www.bleepingcomputer.com/news/security/marks-and-spencer-breach-linked-to-scattered-spider-ransomware-attack/
5. The State of Ransomware – Q2 2025 – Check Point Research, accessed November 26, 2025, https://research.checkpoint.com/2025/the-state-of-ransomware-q2-2025/
6. M&S says customer data stolen in cyberattack, forces password resets – Bleeping Computer, accessed November 26, 2025, https://www.bleepingcomputer.com/news/security/mands-says-customer-data-stolen-in-cyberattack-forces-password-resets/
7. Crying Out Cloud Newsletter – June 2025 | Wiz, accessed November 26, 2025, https://www.wiz.io/newsletter/crying-out-cloud-newsletter-june-2025
8. Staff Software Engineer – Mobile Platform – Marks & Spencer Plc – Job London – Talent.com, accessed November 26, 2025, https://uk.talent.com/view?id=a8799e808a18
9. The Evolving Threat Landscape: A Comprehensive Report on Scattered Spider – FalconFeeds.io, accessed November 26, 2025, https://falconfeeds.io/blogs/scattered-spider-evolving-cyber-threat-report
10. The £300 Million Aftermath: Marks & Spencer’s Profit Collapse Reveals the True Cost of Cyber Resilience – Breached Company, accessed November 26, 2025, https://breached.company/the-300-million-aftermath-marks-spencers-profit-collapse-reveals-the-true-cost-of-cyber-resilience/
11. What is Least Privilege? Enhancing Security by Restricting Access – Group-IB, accessed November 26, 2025, https://www.group-ib.com/resources/knowledge-hub/least-privilege-security/
12. M&S pauses hiring as it deals with cyber attack – Personnel Today, accessed November 26, 2025, https://www.personneltoday.com/hr/ms-cyber-attack/
13. The $403 Million Lesson: How M&S’s Ransomware Attack Reveals the Critical Flaw in Modern Cybersecurity – WheelHouse IT, accessed November 26, 2025, https://www.wheelhouseit.com/critical-flaw-in-modern-cybersecurity/
14. Live facial recognition to become commonplace, M&S boss went into shock over cyber attack, – Tech Digest, accessed November 26, 2025, https://www.techdigest.tv/2025/05/live-facial-recognition-to-become-commonplace-ms-boss-went-into-shock-over-cyber-attack.html
15. Marks & Spencer Replaces IT Provider Amid Security Concerns – The National CIO Review, accessed November 26, 2025, https://nationalcioreview.com/articles-insights/extra-bytes/marks-spencer-replaces-it-provider-amid-security-concerns/
16. Breached Company, accessed November 26, 2025, https://breached.company/
17. UK launches facial recognition drive against shoplifters – Biometric Update, accessed November 26, 2025, https://www.biometricupdate.com/202310/uk-launches-facial-recognition-drive-against-shoplifters
18. Shoplifting crackdown to include £55m for facial recognition tools in England and Wales, accessed November 26, 2025, https://www.theguardian.com/business/2024/apr/10/shoplifting-crackdown-to-include-55m-for-facial-recognition-tools-in-england-and-wales
19. Action plan to tackle shoplifting launched – GOV.UK, accessed November 26, 2025, https://www.gov.uk/government/news/action-plan-to-tackle-shoplifting-launched
20. Kiwi shoplifting intelligence software platform raises $74 million Series C – Startup Daily, accessed November 26, 2025, https://www.startupdaily.net/topic/funding/kiwi-shoplifting-intelligence-software-platform-raises-74-million-series-c/
21. Auror Subject Recognition, accessed November 26, 2025, https://www.auror.co/product/subject-recognition
22. Auror Subject Recognition: One platform to protect stores from known high-risk threats with responsible facial recognition, accessed November 26, 2025, https://www.auror.co/the-intel/auror-subject-recognition
23. Major UK retailers urged to quit ‘authoritarian’ police facial recognition strategy, accessed November 26, 2025, https://www.theguardian.com/technology/2023/oct/28/major-uk-retailers-urged-to-quit-authoritarian-police-facial-recognition-strategy
24. Asda denies claims ‘thousands’ of complaints were made over facial recognition pilot, accessed November 26, 2025, https://www.retailgazette.co.uk/blog/2025/04/asda-rejects-claims/
25. SNAP TO SHOP: M&S INTRODUCES ONLINE PHOTO SEARCH | Marks & Spencer, accessed November 26, 2025, https://corporate.marksandspencer.com/media/press-releases/snap-shop-ms-introduces-online-photo-search
26. M&S launches Style Finder visual search for online shopping – Retail Insight Network, accessed November 26, 2025, https://www.retail-insight-network.com/news/ms-visual-search-style-finder/
27. Recommendation Engines for Fashion – 6 Current Applications, accessed November 26, 2025, https://emerj.com/recommendation-engines-for-fashion-6-current-applications/
28. Payments And The Platform Economy Playbook – PYMNTS.com, accessed November 26, 2025, https://www.pymnts.com/wp-content/uploads/2019/08/Payments-And-The-Platform-Economy-Playbook-August-2019.pdf
29. Female Entrepreneurs and Venture Capitalists (VCs): Realities, Opportunities and Challenges in the Greek and Israeli Ecosystems | The American College of Greece, accessed November 26, 2025, https://www.acg.edu/events/female-entrepreneurs-and-venture-capitalists-vcs-realities-opportunities-and-challenges-in-the-greek-and-israeli-ecosystems/
30. Spotlight: Israel’s startup ecosystem – VML, accessed November 26, 2025, https://www.vml.com/insight/spotlight-israels-startup-ecosystem
31. Klarna and Global-e expand global partnership to Canada – Investor Relations, accessed November 26, 2025, https://investors.global-e.com/news-releases/news-release-details/klarna-and-global-e-expand-global-partnership-canada
32. Terms & Conditions | Marks & Spencer US, accessed November 26, 2025, https://www.marksandspencer.com/us/customer-service/terms/terms.html
33. Eye On Israeli Tech – Paid Program, accessed November 26, 2025, https://partners.wsj.com/israeli/eye-on-israeli-tech/
34. Marks & Spencer announces Ocado Retail acquisition, accessed November 26, 2025, https://www.retail-insight-network.com/news/ms-ocado-retail-acquisition/
35. Ocado Customer Success Story – Google Workspace, accessed November 26, 2025, https://workspace.google.com/customers/ocadoretail/
36. Marks & Spencer partnered with TCS to help transform their business operations, accessed November 26, 2025, https://www.tcs.com/what-we-do/industries/retail/case-study/marks-spencer-partnered-tcs-help-transform-their-business-operations
37. Four strategies to reimagine retail through the cloud, accessed November 26, 2025, https://www.retail-week.com/retail-voice/four-strategies-to-reimagine-retail-through-the-cloud/7040433.article
38. Britain retailer taps Blue Yonder to drive omnichannel strategy, accessed November 26, 2025, https://www.retailcustomerexperience.com/news/britain-retailer-taps-blue-younder-to-drive-omnichannel-strategy/
39. Company – History & Heritage – Delta Galil, accessed November 26, 2025, https://deltagalil.com/company/history-heritage/default.aspx
40. Innovation the name of the game for Delta Galil CEO – Just Style, accessed November 26, 2025, https://www.just-style.com/interviews/innovation-the-name-of-the-game-for-delta-galil-ceo/
41. Delta Galil taps Steve Moore to lead its mass division – Just Style, accessed November 26, 2025, https://www.just-style.com/news/delta-galil-taps-steve-moore-to-lead-its-mass-division-2/
42. MARKS & SPENCER HIGH INCOME FUND PROSPECTUS 30 OCTOBER 2025 – M&S Bank, accessed November 26, 2025, https://bank.marksandspencer.com/pdf/HIFProspectus.pdf
43. Equity ETF Output – BNY, accessed November 26, 2025, https://www.bny.com/content/dam/im/documents/holdings/daily/2025/11/25/13481010.xls
44. THE MARKS AND SPENCER WORLDWIDE MANAGED FUND PROSPECTUS 30 OCTOBER 2025 – M&S Bank, accessed November 26, 2025, https://bank.marksandspencer.com/pdf/WMFProspectus.pdf
45. Report: UK economic links with Israeli settlements | The Electronic Intifada, accessed November 26, 2025, https://electronicintifada.net/content/report-uk-economic-links-israeli-settlements/3423
46. Form N-CSR – SEC.gov, accessed November 26, 2025, https://www.sec.gov/Archives/edgar/data/1524513/000119312516733626/d208470dncsr.htm