Hackers who gained access to heart of London transport network jailed


The data of millions of commuters was stolen, Londoners were left out of pocket and 27,000 Transport for London staff were forced to reset their passwords.

Over four days in 2024 a pair of teenage hackers had London’s transport network at their mercy. The hackers had burrowed into the heart of Transport for London’s IT systems and held the “keys to the kingdom”.

While the main tube and bus networks were not directly affected, the dial-a-ride service for disabled passengers was unable to process bookings for a period. The head of TfL, Andy Lord – a veteran of British Airways – said the attack was the worst incident he had faced in his career.

Read more…
Source:  The Guardian


Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox


Related:

  • ‘Basic IT security’ could have prevented UK NHS WannaCry attack

    October 27, 2017

    England’s National Health Service (NHS) could have avoided the ransomware hack that crippled its systems in May, according to a government report. “Basic IT security” was all that was required to prevent the “unsophisticated” WannaCry attack, which affected more than a third of NHS organizations, said the National Audit Office (NAO). The full scale of the incident saw over 19,000 ...

  • Iran to blame for cyber-attack on MPs’ emails – British intelligence

    October 14, 2017

    Iran is being blamed for a cyber-attack in June on the email accounts of dozens of MPs, according to an unpublished assessment by British intelligence. Disclosure of the report, first revealed by the Times but independently verified by the Guardian, comes at an awkward juncture. Donald Trump made it clear on Friday that he wants to ...

  • British Police Arrest At Least 3,395 People for ‘Offensive’ Online Comments in One Year

    October 14, 2017

    Figures obtained by The Times through the Freedom of Information Act reveal that 3,395 people across 29 forces were arrested last under section 127 of the Communications Act 2003, which makes it illegal to intentionally “cause annoyance, inconvenience or needless anxiety to another”, in 2016. The true figure is likely to be significantly higher, as thirteen ...

  • London issues call to arms to cyber security community

    October 13, 2017

    Cyber security community called on to help educate capital’s small businesses about cyber crime and give them practical advice London is calling on the cyber security community to help keep the city’s more than one million small businesses safe from cyber crime. “Cyber crime is a growing problem for everyone, but while individuals are protected by their ...

  • Cyber-security threat to UK ‘as serious as terrorism’ – GCHQ

    October 9, 2017

    Keeping the UK safe from cyber-attacks is now as important as fighting terrorism, the head of the intelligence monitoring service GCHQ has said. Jeremy Fleming said increased funding for GCHQ was being spent on making it a “cyber-organisation” as much as an intelligence and counter-terrorism one. It comes after the NHS and parliament suffered cyber-attacks this year. Mr ...

  • UK cybercops reacted to 590 ‘significant attacks’ over past year – report

    October 5, 2017

    The National Cyber Security Centre responded to 590 “significant attacks” over the last year including WannaCry, MPs’ email addresses being targeted due to weak passwords and various threats to other large organisations. The body was created in October last year, bringing together previously separate parts of government, MI5 and GCHQ. Its aim is to support and advise the public ...