{"id":25144,"date":"2024-09-12T09:04:29","date_gmt":"2024-09-12T17:04:29","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2024\/09\/12\/news-18874\/"},"modified":"2024-09-12T09:04:29","modified_gmt":"2024-09-12T17:04:29","slug":"news-18874","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2024\/09\/12\/news-18874\/","title":{"rendered":"London\u2019s city transport hit by cybersecurity incident"},"content":{"rendered":"\n<p>Transport for London (TfL), the city&#8217;s transport authority, is fighting through an ongoing cyberattack. TfL runs three separate units that arrange transports on London&#8217;s surface, underground, and <a href=\"https:\/\/tfl.gov.uk\/corporate\/publications-and-reports\/crossrail-central-operating-section\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Crossrail<\/a> transportation systems. It serves some 8 million inhabitants of the London metropolitan area.<\/p>\n<p>In a <a href=\"https:\/\/tfl.gov.uk\/campaign\/cyber-security-incident\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">public notice<\/a> Transport for London stated:<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cWe are currently dealing with an ongoing cyber security incident. At present, there is no evidence that any customer data has been compromised and there has been no impact on TfL services.<\/p>\n<p>The security of our systems and customer data is very important to us, and we have taken immediate action to prevent any further access to our systems.\u201d<\/p>\n<\/blockquote>\n<p>The incident does have some impact though, as TfL took the <a href=\"https:\/\/tfl.gov.uk\/help-and-contact\/maintenance-for-contactless\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">contactless website<\/a> for purchasing tickets offline for \u201cmaintenance.\u201d This maintenance was not announced earlier though, which they likely would have done under normal circumstances.<\/p>\n<p>The contactless website is used to purchase online tickets, upgrade travelcards (Oystercards), check travel history, and request refunds.<\/p>\n<p>In a short thread on X, TfL said it is working with the National Crime Agency and the National Cyber Security Centre to investigate and respond to the incident.<\/p>\n<figure class=\"wp-block-image aligncenter size-full\"><a href=\"https:\/\/x.com\/TfL\/status\/1830667342063313380\"><img decoding=\"async\" loading=\"lazy\" width=\"600\" height=\"172\" src=\"https:\/\/www.malwarebytes.com\/wp-content\/uploads\/sites\/2\/2024\/09\/Tweet1.png\" alt=\"\" class=\"wp-image-116863\" \/><\/a><\/figure>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>Hi, thanks for getting in touch. We are working to resolve this as soon as possible. We need to complete our full assessment, but there is currently no evidence that any customer data has been compromised, or impact on TfL services. We are working closely with the<\/p>\n<\/blockquote>\n<figure class=\"wp-block-image aligncenter size-full\"><img decoding=\"async\" loading=\"lazy\" width=\"614\" height=\"188\" src=\"https:\/\/www.malwarebytes.com\/wp-content\/uploads\/sites\/2\/2024\/09\/Tweet2.png\" alt=\"National Crime Agency and the National Cyber Security Centre to respond to the incident. We are continuing to work to assist our customers here in the usual manner. Thanks, SW.\" class=\"wp-image-116864\" \/><\/figure>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>National Crime Agency and the National Cyber Security Centre to respond to the incident. We are continuing to work to assist our customers here in the usual manner. Thanks, SW.<\/p>\n<\/blockquote>\n<p><a href=\"https:\/\/cyberplace.social\/@GossiTheDog\/113072717778964102\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">According<\/a> to security researcher Kevin Beaumont:<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cTransport for London have a genuine internal security incident running and are reverting to paper processes.\u201d<\/p>\n<\/blockquote>\n<p>Since TfL is keeping rather quiet about the incident it is hard to asses whether this disruption is the result of a ransomware attack or something else.<\/p>\n<p>We\u2019ll keep you posted if we learn more.<\/p>\n<hr class=\"wp-block-separator has-text-color has-cyan-bluish-gray-color has-alpha-channel-opacity has-cyan-bluish-gray-background-color has-background is-style-wide\" \/>\n<p><strong>We don\u2019t just report on threats\u2014we remove them<\/strong><\/p>\n<p>Cybersecurity risks should never spread beyond a headline. Keep threats off your devices by&nbsp;<a href=\"https:\/\/www.malwarebytes.com\/for-home\">downloading Malwarebytes today<\/a>.<\/p>\n<p><a href=\"https:\/\/www.malwarebytes.com\/blog\/news\/2024\/09\/londons-city-transport-hit-by-cybersecurity-incident\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p> Transport for London (TfL) is apparently fighting a cybersecurity incident but is rather sparing in providing details <\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[32,31846,31847],"class_list":["post-25144","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-news","tag-tfl","tag-transport-for-london"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/25144","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=25144"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/25144\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=25144"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=25144"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=25144"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}