Tata Consultancy Services (TCS) has refuted claims made by UK media regarding the termination of its $1 billion contract with Marks & Spencer (M&S) due to a cyberattack. TCS clarified that the decision to end the service desk contract was part of a routine competitive tender process initiated well before the cyber incident occurred in April 2025, emphasizing that the matters were unrelated. M&S, which faced significant operational disruptions and financial losses estimated at around £300 million due to the breach, acknowledged the contract’s non-renewal while maintaining that TCS remains a strategic partner in other areas. The incident has ignited discussions on cybersecurity and vendor accountability, highlighting the vulnerabilities posed by complex outsourcing ecosystems and the critical role of human interactions in cybersecurity breaches. This situation underscores the importance of robust cybersecurity measures for organizations reliant on third-party vendors, as the repercussions of such incidents can extend beyond immediate operational impacts to affect client trust and brand reputation. The case serves as a cautionary tale for both retailers and their technology partners, stressing the necessity of comprehensive risk assessments and proactive cybersecurity strategies in a rapidly evolving digital landscape.