Hackers who gained access to heart of London transport network jailed


The data of millions of commuters was stolen, Londoners were left out of pocket and 27,000 Transport for London staff were forced to reset their passwords.

Over four days in 2024 a pair of teenage hackers had London’s transport network at their mercy. The hackers had burrowed into the heart of Transport for London’s IT systems and held the “keys to the kingdom”.

While the main tube and bus networks were not directly affected, the dial-a-ride service for disabled passengers was unable to process bookings for a period. The head of TfL, Andy Lord – a veteran of British Airways – said the attack was the worst incident he had faced in his career.

Read more…
Source:  The Guardian


Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox


Related:

  • UK Police use controversial AI tool that looks at people’s sex lives and beliefs

    June 16, 2025

    British police forces have signed contracts with a controversial US tech giant to buy AI-powered software that uses data about an individual’s race, sex life, health and political beliefs, it can be revealed. An internal police memo obtained by The i Paper and Liberty Investigates confirms an intention to “nationally” apply the “Nectar” intelligence system, currently ...

  • M&S shares rise as online orders resume after £300m cyberattack

    June 11, 2025

    M&S shares climbed on Tuesday (10 June) after the retailer reopened its website more than six weeks following a cyberattack that forced a near two-month halt to online sales. The group has resumed home delivery of a selection of its best-selling fashion ranges across England, Scotland, and Wales, with plans to add more fashion, home, and ...

  • UK: Police Federation pays £15m to officers hit by cyber attack

    June 10, 2025

    The Police Federation has paid out £15 million to 19,000 current and former officers who had their personal details compromised and stolen by cyber criminals. Two huge attacks exposed the home addresses of some officers to hackers six years ago, and in March 2022 the federation admitted a breach of the requirements under the GDPR to ...

  • A third of UK fintechs put customers data at risk of cyber attack

    May 29, 2025

    UK fintechs are putting thousands of customers in jeopardy by leaving themselves vulnerable to a cyber attack, shocking new research reveals. Nearly 800 firms’ digital presence was analysed by the ethical hacking platform Ethiack as it scrutinised their cybersecurity. Four in ten fintechs were found to be giving hackers a “powerful headstart” by revealing software details ...

  • UK to deliver pioneering battlefield system and bolster cyber warfare capabilities under Strategic Defence Review

    May 29, 2025

    Pinpointing and eliminating enemy targets will take place faster than ever before, as the Government invests more than £1 billion to equip the UK Armed Forces with a pioneering battlefield system. A new Cyber and Electromagnetic Command will also be established to put the UK at the forefront of cyber operations as part of the Strategic ...

  • UK: NHS patient data at risk in major cyber attack

    May 28, 2025

    A newly uncovered cyber attack has exposed sensitive information at two major NHS trusts, raising fears that patient records could be at risk. University College London hospitals, NHS Foundation Trust, and University Hospital Southampton, NHS Foundation Trust were among the victims identified in a widespread cyber breach.  analysed by cybersecurity firm EclecticIQ. The company have said ...