Transport for London investigates cyber attack

TfL cyberattack exposes commuter data as NCA arrests teenager

Transport for London investigates cyber attack

London’s transport agency is currently investigating a cyber attack which, for the moment, has not affected any transport services.

Transport for London (TfL) issued a statement yesterday (September 2) saying it had contacted its customers and is currently investigating, but at this time there is no evidence that data has been stolen.

“We are currently dealing with an ongoing cybersecurity incident. “Currently, there is no evidence that customer data has been compromised and there has been no impact on TfL services,” TfL said.

“The security of our systems and customer data is very important to us and we have taken immediate steps to prevent any further access to our systems.”

TfL added that it has contacted the relevant authorities and informed them of the incident and will provide further information as the investigation progresses.

Speaking to the BBC, TfL chief technology officer Shashi Verma echoed the statement and said the investigation is ongoing.

“We have introduced a number of measures into our internal systems to address an ongoing cybersecurity incident,” he said.

“The security of our systems and customer data is very important to us and we will continue to evaluate the situation during and after the incident.

“While we will need to complete our full assessment, at this time there is no evidence that customer data has been compromised.

“There is currently no impact on TfL services and we are working closely with the National Crime Agency and the National Cyber ​​Security Center to respond to the incident.”

At this time, the nature of the incident is unknown and no threat actors have come forward to claim responsibility.

TfL was hit by the major MOVEit supply chain attack last year, orchestrated by Russian ransomware gang Clop.

While the company confirmed that its own systems were not compromised, it said that the threat actors exfiltrated the contact data of approximately 13,000 customers. Banking information was not compromised.

Leave a Reply

Your email address will not be published. Required fields are marked *