TCS has been working with M&S for over 10 years and helped run various systems, including the Sparks customer loyalty program. However, both TCS and M&S have declined to comment on the matter so far.
Earlier this week, M&S revealed that hackers managed to break into their systems through a "third party" company, rather than by directly accessing M&S’s own systems. While they didn’t name the company, sources told the Financial Times that TCS is now examining whether its systems were used in the attack. It's unclear when this internal investigation began, but it's expected to finish by the end of this month.
The cyber-attack has had a serious impact. Since late April, M&S customers haven’t been able to shop online, and the company has said disruptions could continue until July. The retailer estimates it could lose around £300 million in profits this year due to the attack.
UK police are reportedly focusing on a well-known group of hackers called "Scattered Spider." This group is believed to be behind other recent cyber-attacks on companies like Harrods and the Co-op, though M&S has faced the most severe consequences so far.
TCS is a global IT giant with more than 600,000 employees and a long list of big-name clients, including easyJet, Nationwide, and Jaguar Land Rover. It’s unclear if the internal review at TCS is also looking into the Co-op attack.
In 2023, TCS and M&S even won an award together for their partnership, highlighting how closely the two companies have worked over the years.
M&S CEO Stuart Machin recently said the company had been dealing with a "highly sophisticated and targeted" cyber-attack but did not say whether a ransom was paid.
As investigations continue, customers and businesses alike are waiting to learn more about how this major cyber-attack unfolded.
Tags:
Cyber News
