Indian IT Giant Investigates Link to M&S Cyber-Attack
An Indian IT giant, Tata Consultancy Services (TCS), is conducting a thorough internal investigation into its potential role in the recent cyber-attack on Marks & Spencer (M&S). According to sources close to the investigation, TCS has been working with M&S for over a decade and has provided services to the retailer's customer reward scheme, Sparks. The investigation is believed to be ongoing, with hopes that it will be concluded by the end of this month.
M&S revealed earlier this week that the hackers who breached its systems gained access via a "third party" - a company working alongside M&S - rather than directly accessing the retailer's systems. The company has declined to comment on the identity of the third-party firm, citing concerns about national security.
The cyber-attack, which began in April, has caused significant disruption to M&S' online services, with customers unable to buy items on the website since then. While some level of disruption is expected to continue until July, the retailer hopes that its online services will gradually return to normal over the coming weeks.
M&S estimates that the cyber-attack will have a significant impact on this year's profits, with losses estimated at around £300m. Police are focusing their investigation on a notorious group of English-speaking hackers known as Scattered Spider, who are believed to be young and from the US and UK.
The Role of TCS in the Cyber-Attack
TCS is one of the largest IT companies in the world, with over 607,000 employees across the globe. The company has a portfolio of well-known clients, including the Co-op, easyJet, Nationwide, and Jaguar Land Rover.
In 2023, TCS won the Retail Partnership of the Year award at the Retail Systems Awards, alongside M&S. The two companies have worked together on various projects, including Sparks, M&S' customer reward scheme. However, it is not clear if this partnership has any connection to the cyber-attack.
Police Investigation and Ransom Payment
Police are focusing their investigation on Scattered Spider, a notorious group of English-speaking hackers who have been linked to several high-profile attacks in recent years. The group is believed to be behind the cyber-attacks on the Co-op and Harrods, as well as the recent attack on M&S.
In a media call earlier this week, M&S chief executive Stuart Machin did not respond to a question about whether the company had paid a ransom as part of the process. The exact nature of the cyber-attack is still unclear, but it is believed that the hackers gained access to M&S' systems via a third-party firm.
Cyber-Security in Retail
The recent cyber-attack on M&S highlights the importance of robust cyber-security measures in retail. As online shopping continues to grow in popularity, retailers must be vigilant in protecting their customers' personal data and preventing breaches like this one.
TCS has a reputation for being a trusted partner for many retailers, but the company's involvement in this latest attack raises questions about its ability to protect sensitive information.