26/09/24
Train passengers receive Islamophobic messages after cyber attack
Train passengers at some of the country's biggest rail stations have been hit by a "cyber security incident" which saw them exposed to Islamophobic messages.
Manchester Piccadilly, Birmingham New Street and 11 stations in London were affected by the cyber attack on Wednesday.
Telent, the company that manages the WiFi system, said the attack came from someone working for the company running the WiFi homepage and the matter is now being dealt with by the police.
"An unauthorised change was made to the Network Rail landing page from a legitimate Global Reach administrator account and the matter is now subject to criminal investigations by the British Transport Police," Telent said in a statement.
Passengers trying to log on to public WiFi at the Network Railway-managed stations were targeted with the Islamophobic message.
The message sent out in place of the WiFi login page, which has been seen by Sky News, contained a passage referring to a UK terror attack.
"Insider threats pose a significant risk to critical national infrastructure because they come from people who have legitimate access to sensitive systems and data," Rick Goud, chief information officer at cyber security firm Zivver, said.
"Unlike external hackers who have to bypass security measures, insiders are already on the 'inside' of the defences.
"This could be a disgruntled employee, a contractor with malicious intent, or someone unknowingly compromised by external forces through phishing or social engineering attacks," he said.
The best way to manage the risk of insider jobs, according to Mr Goud, is "monitoring user behaviour, enforcing strict access controls and fostering a security-conscious culture".
Network Rail has suspended WiFi services at stations across the country following the incident.
The only Network Rail-managed station not affected was London's St Pancras.
A Network Rail spokesperson said: "Last night the public WiFi at 19 of Network Rail's managed stations was subjected to a cyber security incident and was quickly taken offline.
"The incident is subject to a full investigation. The WiFi is provided by a third party, is self-contained and is a simple 'click & connect' service that doesn't collect any personal data.
"Once our final security checks have been completed, we anticipate the service will be restored by the weekend."
Telent confirmed that no personal data was affected by the attack.
A British Transport police spokesperson said: "We received reports at around 5.03pm yesterday [Wednesday] of a cyber attack displaying Islamophobic messaging on some Network Rail WiFi services.
"We are working alongside Network Rail to investigate the incident at pace."
Related Links
Back to index