Tata Consultancy Services Probes Potential Link to Cyber-Attack on Marks & Spencer

An internal investigation is underway at Indian tech giant Tata Consultancy Services (TCS) to determine whether its systems were used as the entry point for the recent cyber-attack that severely disrupted Marks & Spencer (M&S) operations, according to BBC News sources.

Third-Party Access Under Scrutiny

Earlier this week, M&S revealed that hackers had breached its systems via a third-party provider rather than by attacking the retailer directly. While neither M&S nor TCS has officially confirmed any involvement, the focus is now on TCS, which has worked with M&S for over a decade on various services, including its Sparks customer rewards program.

The Financial Times, which first broke the story, cited sources close to the probe who expect the internal inquiry to wrap up by the end of the month. However, the exact start date of TCS’s investigation remains unclear.

Major Disruption and Financial Fallout

The cyber-attack has significantly impacted M&S’s digital operations. Online shopping has been offline since late April, leaving customers unable to make purchases through the website. M&S has stated that while online services will gradually return over the coming weeks, full functionality may not resume until July.

The financial toll is steep: M&S estimates that the attack could cost the company £300 million in lost profits this year.

Hacker Group ‘Scattered Spider’ Behind the Breach

Authorities are reportedly investigating Scattered Spider, an English-speaking cybercriminal group suspected of orchestrating the attack. The same group is believed to be behind earlier incidents involving the Co-op and Harrods, but the M&S breach appears to be the most damaging.

A High-Profile Partner Under Pressure

TCS, one of the world’s largest IT services firms with over 607,000 global employees, is a high-profile partner of many major UK brands. In addition to M&S, its client list includes Co-op, easyJet, Nationwide, and Jaguar Land Rover. There is no confirmation yet on whether the internal review also covers the cyber-attack on the Co-op.

The company has also been recognized for its collaborations — in 2023, TCS and M&S were awarded Retail Partnership of the Year at the Retail Systems Awards. TCS is also the lead sponsor of the New York, London, and Sydney marathons.

Silence on the Ransom Question

During a media call on Wednesday, M&S CEO Stuart Machin described the breach as a “highly sophisticated and targeted cyber-attack” that caused a “limited period of disruption.” However, he declined to comment on whether the company had paid a ransom.

As investigations continue, the cyber incident underscores growing concerns about the vulnerability of major retailers to third-party breaches — and the potentially massive costs that come with them.

Source: BBC – Indian IT giant investigates link to M&S cyber-attack