Indian IT Giant Investigates Link to M&S Cyber Attack

In a shocking turn of events, Indian IT giant Tata Consultancy Services (TCS) is conducting an internal investigation into its alleged role in facilitating the cyber-attack on Marks & Spencer (M&S). According to sources close to the investigation, TCS has been probing whether it was the gateway for the attack that disrupted the retailer's operations. The news comes as M&S continues to grapple with the aftermath of the cyber-attack, which has left customers unable to buy items on its website since April.

M&S initially revealed that hackers had gained access to their systems via a "third party" - a company working alongside it - rather than accessing those systems directly. However, both M&S and TCS have declined to comment further on the matter. The Financial Times (FT) was the first to report on the investigation, citing sources who believe the inquiry will be concluded by the end of the month.

TCS has a long history of working with M&S, providing services for over a decade. In fact, TCS is one of M&S's longest-standing partners, having worked alongside the retailer since 2012. The two companies have also collaborated on projects such as Sparks, M&S's customer reward scheme. TCS has also won numerous awards for its work with M&S, including the Retail Partnership of the Year award at the Retail Systems Awards in 2023.

However, TCS is not without controversy. In addition to its work with M&S, the company has a portfolio of well-known clients that include the Co-op, easyJet, Nationwide, and Jaguar Land Rover. While it is unclear whether the internal probe is also investigating the hack on the Co-Op, one thing is certain: TCS is facing scrutiny over its potential role in facilitating the M&S cyber attack.

Police are currently focusing on a notorious group of English-speaking hackers known as Scattered Spider, who are believed to have been responsible for the attack. The group has also been linked to attacks on other retailers, including Harrods and the Co-op. However, it was M&S that suffered the biggest impact from the cyber-attack, with estimates suggesting that the disruption will hit this year's profits by around £300m.

Customers have not been able to buy items on the M&S website since April, but the retailer has promised that online services will gradually return to normal over the coming weeks. However, some level of disruption is expected to continue until July. In a media call earlier this week, M&S chief executive Stuart Machin did not respond to questions about whether the company had paid a ransom as part of the process.

As the investigation into TCS's alleged role in facilitating the M&S cyber-attack continues, one thing is clear: the fallout from this incident will have far-reaching consequences for both retailers and the wider tech industry. Stay tuned for further updates on this developing story.