The recent cyberattack which targeted Transport for London (TFL) is now in its second week, with a potentially concerning development for customers.
The organization had originally put out a statement claiming there was, “no evidence that any customer data has been compromised”, but this has since been revised to, “The security of our systems and customer data is very important to us” – suggesting there is indeed a possible risk to customer information.
TfL boasts over five million customers per day, meaning any cyberattack could have a wide-reaching implications and cause chaos if services were affected. On this occasion, it seems the brunt of the impact was felt by disabled users of ‘Dial-a-Ride’, the door-to-door service which was disrupted by the attack.
Vulnerable targets
It has not been revealed how cyber criminals gained access to the TfL systems or exactly what information was exposed, however, the transport system remains largely unaffected. It was reported that TfL employees were asked to work from home whilst the incident is ongoing.
Critical infrastructure has proved to be a popular target for malicious actors in recent times. Infrastructure is so crucial in the daily lives of so many, but targets like the NHS simply don’t have the funding to employ top of the line cyber security.
It’s common for cyber criminals to exploit vulnerabilities in a company’s network and exfiltrate sensitive data, often demanding a ransom to delete the information, or selling it on the dark web.
The nature of the data taken in this attack has not been revealed, and it’s unlikely much will be understood until the incident is resolved. However, we recommend anyone who is concerned about their data to take a look at our choices for best identity theft protection services to keep your information safe.
Via TechCrunch
More from TechRadar Pro
https://cdn.mos.cms.futurecdn.net/h3qR8UKMq6wXR6WHZfxfUe-1200-80.jpg
Source link
