Share this article on:
The English transport network continues to fight off cyber attackers after threat actors hijacked the Wi-Fi networks of 20 UK railway stations.
According to media reports, the Wi-Fi networks at Manchester Piccadilly, Leeds City, Liverpool Lime Street, Edinburgh Waverly and more, including 11 London train stations such as London Bridge, Euston and St Pancras International were taken over by threat actors.
Users attempting to access Network Rail’s Wi-Fi were instead presented with a pop-up that said, “We love you Europe” before detailing a number of previous terrorist attacks on Europe in what reports suggest was an anti-Islamic message.
Network Rail has confirmed that it is aware of the issue and is currently investigating.
“We are currently dealing with a cyber security incident affecting the public Wi-Fi at Network Rail’s managed stations,” a company spokesperson said.
“This service is provided via a third party and has been suspended while an investigation is underway.”
Network Rail’s Wi-Fi networks are run by Telent, which is yet to comment on the incident. Cyber Daily has reached out to Telent for comment on the incident.
Additionally, the British Transport Police also confirmed that it was aware of the cyber attack.
“We are aware of a cyber attack that affected some Network Rail Wi-Fi services, reported to us at around 5:03pm today (25 September),” a spokesperson said.
“We are working with Network Rail to investigate the incident.”
The latest cyber attack comes just weeks after threat actors launched an attack on London’s public transport agency, Transport for London (TfL).
The agency announced earlier this month that it was investigating a cyber attack that at the time, had not yet affected any transport services.
However, the attack began to impact its Dial-a-Ride service for disabled passengers, before then resulting in limited staff access and exposing the commuter data of roughly 5,000 passengers as well as those who were subscribed to TfL’s email alerts.
The National Crime Agency (NCA) has since announced that it has arrested a 17-year-old-man in Walsall, England in relation to the incident.
The teenager was suspected to have breached the Computer Misuse Act but has since been questioned by the NCA.
Despite the arrest, sources speaking with media said the incident is still ongoing and that threat actors are still at large.