TfL requires in-person password resets for all staff following cyberattack

Roughly 30,000 employees must attend in-person appointments to verify their identities

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

The effects of the recent cyberattack on Transport For London (TfL) systems continue to be felt, with employees now being asked to attend an in person meeting to verify their identities and reset their passwords.

The organization has confirmed customer data was accessed during the attack, and one person has beenarrested in relation to the incident, with the leaked data possibly including the bank details for around 5,000 customers, with applications for new Oyster photo and zip cards temporarily suspended.

Public transport itself remained largely unaffected in the incident, which primarily disrupted internal systems and the refund process for the transport agency, but the impact is still causing delay for some of TfL’s systems.

Ongoing disruption

Ongoing disruption

TfL has confirmed it will be in touch with any customer whose information was compromised, and the organization is monitoring anyone who uses their system to ensure only those with authorisation can gain access,

“Some customers may ask questions about the security of our network and their data. First and foremost, we must reassure that our network is safe,” TfL added on its employee hub. “Secondly, we’re contacting customers directly about steps being taken regarding their data.”

This attack reinforces the current trend of critical infrastructure as the target for cyber criminals. Organisations such as hospitals and energy companies which provide a public service areparticularly vulnerablesince they don’t tend to have the budget for top of the range cyber security.

ViaBleepingComputer

Are you a pro? Subscribe to our newsletter

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

More from TechRadar Pro

Ellen has been writing for almost four years, with a focus on post-COVID policy whilst studying for BA Politics and International Relations at the University of Cardiff, followed by an MA in Political Communication. Before joining TechRadar Pro as a Junior Writer, she worked for Future Publishing’s MVC content team, working with merchants and retailers to upload content.

Mount-It Electric Standing Desk review

One more AMD eGPU docking station goes on sale — but it doesn’t have USB 4.0, can’t accommodate an M.2 SSD and requires an OCuLink connector to feed the RX 7600M XT chip

7 myths about email security everyone should stop believing