Powered by MOMENTUM MEDIA
cyber daily logo
Breaking news and updates daily. Subscribe to our Newsletter

Threat actors hijack UK train network Wi-Fi to display anti-Islamic terrorist message

The English transport network continues to fight off cyber attackers after threat actors hijacked the Wi-Fi networks of 20 UK railway stations.

user icon Daniel Croft
Thu, 26 Sep 2024
Threat actors hijack UK train network Wi-Fi to display anti-islamic terrorist message
expand image

According to media reports, the Wi-Fi networks at Manchester Piccadilly, Leeds City, Liverpool Lime Street, Edinburgh Waverly and more, including 11 London train stations such as London Bridge, Euston and St Pancras International were taken over by threat actors.

Users attempting to access Network Rail’s Wi-Fi were instead presented with a pop-up that said, “We love you Europe” before detailing a number of previous terrorist attacks on Europe in what reports suggest was an anti-Islamic message.

Network Rail has confirmed that it is aware of the issue and is currently investigating.

============
============

“We are currently dealing with a cyber security incident affecting the public Wi-Fi at Network Rail’s managed stations,” a company spokesperson said.

“This service is provided via a third party and has been suspended while an investigation is underway.”

Network Rail’s Wi-Fi networks are run by Telent, which is yet to comment on the incident. Cyber Daily has reached out to Telent for comment on the incident.

Additionally, the British Transport Police also confirmed that it was aware of the cyber attack.

“We are aware of a cyber attack that affected some Network Rail Wi-Fi services, reported to us at around 5:03pm today (25 September),” a spokesperson said.

“We are working with Network Rail to investigate the incident.”

The latest cyber attack comes just weeks after threat actors launched an attack on London’s public transport agency, Transport for London (TfL).

The agency announced earlier this month that it was investigating a cyber attack that at the time, had not yet affected any transport services.

However, the attack began to impact its Dial-a-Ride service for disabled passengers, before then resulting in limited staff access and exposing the commuter data of roughly 5,000 passengers as well as those who were subscribed to TfL’s email alerts.

The National Crime Agency (NCA) has since announced that it has arrested a 17-year-old-man in Walsall, England in relation to the incident.

The teenager was suspected to have breached the Computer Misuse Act but has since been questioned by the NCA.

Despite the arrest, sources speaking with media said the incident is still ongoing and that threat actors are still at large.

Daniel Croft

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

newsletter
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.