The data of millions of commuters was stolen, Londoners were left out of pocket and 27,000 Transport for London staff were forced to reset their passwords.
Over four days in 2024 a pair of teenage hackers had London’s transport network at their mercy. The hackers had burrowed into the heart of Transport for London’s IT systems and held the “keys to the kingdom”.
While the main tube and bus networks were not directly affected, the dial-a-ride service for disabled passengers was unable to process bookings for a period. The head of TfL, Andy Lord – a veteran of British Airways – said the attack was the worst incident he had faced in his career.
Read more…
Source: The Guardian
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- UK keeps up its legal losing streak over mass surveillance
January 30, 2018
Yet another defeat in the courts for the UK government’s use of mass surveillance as an indiscriminate and, as it frequently turns out, unlawful investigatory tool. Today the UK’s Court of Appeal handed down its ruling in a long running challenge to the 2014 Data Retention and Investigatory Powers Act (DRIPA) — judging that the regime’s bulk collection ...
- GDPR: Deadline looms but businesses still aren’t ready
January 25, 2018
Under half of businesses are aware of upcoming data protection laws they’ll be subject to in just four months’ time — or what the new legislation means for how information security is handled. A lack of awareness about the forthcoming introduction of General Data Protection Regulation (GDPR) — a new set of rules from the European Union which ...
- Govt to help cyber security geeks commercialise their ideas with fresh funds
January 18, 2018
Cyber security academicians in the UK will soon be able to receive grants of up to £16,000 from the National Cyber Security Centre if they come up with innovative ideas that can be commercialised. Grants offered by the National Cyber Security Centre to academics in the field of cyber security will come from a £500,000 ...
- GCHQ ‘Over-Achieved’ its Development of Offensive Cyber Capabilities
December 21, 2017
A new report from the Intelligence and Security Committee claims that the GCHQ has substantially increased its hacking abilities over the past few years. So much so that the Committee claims the spy organisation has “over-achieved”. How much is over-achieved? Apparently the agency has doubled the number of offensive cyber-capabilities, including the ability to attack other countries’ communications, ...
- GCHQ’s cybersecurity accelerator just opened its door to nine new startups
December 11, 2017
Software designed to detect phishing emails, a platform to help developers write secure code, and a company which investigates cybercrime involving cryptocurrencies are just some of the ideas behind the startups that will join the second incarnation of GCHQ’s cyber-accelerator. Showcased at a launch event at the National Cyber Security Centre in London, the nine companies will spend nine months working ...
- UK government bans all Russian anti-virus software from Secret-rated systems
December 3, 2017
The United Kingdom’s National Cyber Security Centre has effectively banned the use of Russian anti-virus products from government departments and revealed it is trying to “prevent the transfer of UK data to the Russian state” from Kaspersky Labs software. A guidance note published last Friday and distributed to permanent secretaries of government departments, addressed “The issue of supply ...

