Northern Trains hit by ransomware attack

Ticket machines operated by Northern Trains have been hit by a suspected ransomware attack. The machines were put out of action this week following a cyber attack designed to extort money from the company.

The servers operating the machines are the only system believed to have been affected. In a statement to news agency Reuters, Northern Trains said that the matter is subject to an ongoing investigation with its supplier, but that the indications are that the service has been subject to a ransomware attack. The touchscreen units were installed just two months ago in 420 stations, at a cost of £17m

The company, which runs trains connecting cities across the north of England including Manchester, Sheffield and Leeds, added that no customer or payment data had been compromised and that tickets are still available to buy online for download or collection at ticket offices.

The latest ransomware incident comes just days after another transport operator – Nottingham City Transport – experienced a cyber security breach which temporarily disrupted some services. The bus firm added that no personal data was accessed during the incident.

    Share Story:


Cyber physical risks
Property damage as a consequence of cyber attack is often excluded from standard property policies, but as the industrial internet of things expands, so too do the risks. This podcast examines the evolving threat landscape. Published October 2021

Financial institutions were early adopters of cyber security and insurance. Are they still on top of the game?
Managing huge amounts of sensitive data online makes financial institutions a prime target for hackers. As such, the sector was an early cohort for insurers in creating cyber cover. Since then, the market has evolved almost beyond recognition. It continues to challenge itself to this day, complying with rigorous regulatory demands and implementing avant-garde enhancements to keep abreast of the ever-changing risks. Published June 2021