17 Year Old Arrested Over TfL Cyber Security Breach
Transport for London (TfL) has provided a new update regarding the ongoing cyber security incident that has affected its systems. The attack, first detected on 1 September, prompted immediate action from TfL to secure its network and protect customer data. The company is collaborating closely with the National Crime Agency (NCA) and the National Cyber Security Centre (NCSC) to address the situation.
A teenager has been arrested by the NCA, as part of the investigation into a cyber security incident affecting Transport for London (TfL).
TfL’sChief Technology Officer, Shashi Verma, reported that the attack led to the unauthorised access of certain customer data. This includes personal details such as names, email addresses, and home addresses. Additionally, some Oyster card refund data, which may include bank account numbers and sort codes for approximately 5,000 customers, has also been accessed. Verma assured that while there has been minimal impact on customers thus far, the situation is being actively managed.
We are continuing to deal with an ongoing cyber security incident.
The security of our systems and customer data is very important to us, and we have taken immediate action to protect our systems.
In response to the breach, TfL has implemented several measures to enhance security. These include a comprehensive all-staff IT identity check and additional security protocols. Despite these measures, customers may experience temporary disruptions in some services. Live Tube arrival information is currently unavailable on digital channels, and applications for new Oyster photocards have been suspended. TfL has apologised for any inconvenience caused and is working to restore all affected services as quickly as possible.
Arrest in Connection with the Incident
A 17-year-old male was arrested in Walsall in connection with the cyber attack. The teenager is suspected of offences under the Computer Misuse Act. The NCA’sPaul Foster highlighted the seriousness of such attacks on public infrastructure and commended TfL for its swift response. The investigation remains ongoing, with efforts focused on identifying and prosecuting those responsible for the attack.
Attacks on public infrastructure such as this can be hugely disruptive and lead to severe consequences for local communities and national systems.
The swift response by TfL following the incident has enabled us to act quickly, and we are grateful for their continued co-operation…
TfL continues to work diligently to manage the cyber security incident and mitigate any further impact on customers. The organisation remains committed to keeping the public informed and has advised affected individuals that they will be contacted directly with support and guidance. As investigations proceed, TfL is prioritising the enhancement of its security measures to prevent future breaches.
