ADVERTISEMENT

M&S hackers used employee logins from third-party consulting firm TCS, sources say

New information reveals Scattered Spider allegedly gained access to Marks & Spencer systems by using the login credentials of two employees from third-party business partner TCS – which also touts Co-op as one of its clients.

M&S

Matt Cardy/Getty Images

Stefanie Schappert
Stefanie Schappert Senior Journalist
May 19, 2025 Updated: 21 May 2025 4 min read
Tata Consultancy Services
Scattered Spider is reported to have breached M&S systems by using the login credentials of two employees of TaTa Consultancy Services (TCS), a third-party business technology provider, which also partners with UK retailer Co-op. Image by PradeepGaurs | Shutterstock

TCS provides technology to both retailers

Gintaras Radauskas vilius Ernestas Naprys Paulina Okunyte
Don’t miss our latest stories on Google News
Add us as your Preferred Source on Google.
ADVERTISEMENT

M&S recovery highlights safety over speed

M&S customer data statement
corporate.marksandspencer.com

Scattered Spider claims both breaches

Coop CEO statement
coop.co.uk
ADVERTISEMENT