U.Ok.’s Nationwide Crime Company says it arrested a 17-year-old teenager who’s suspected of being linked to the cyberattack on Transport for London, town’s public transportation company.
“A teenager has been arrested in Walsall by the National Crime Agency, as part of the investigation into a cyber security incident affecting Transport for London (TfL),” reads the NCA assertion.
“The 17-year-old male was detained on suspicion of Computer Misuse Act offences in relation to the attack, which was launched on TfL on 1 September.”
{The teenager} was questioned by NCA officers and subsequently launched on bail.
The NCA says they’re main the investigation into the cyberattack and dealing intently with the Nationwide Cyber Security Centre and TfL to handle the incident.
As famous by SANS teacher Will Thomas, the NCA additionally arrested a 17-year-old male from Walsall in July 2024 for a potential hyperlink to the MGM Resorts ransomware assault. This assault was attributed to the Scattered Spider hacking collective, which was performing as an affiliate for the BlackCat ransomware gang.
BleepingComputer contacted the NCA about whether or not the identical particular person was arrested however has not heard again right now.
The Transport for London cyberattack
On September 1st, Transport for London disclosed that it suffered a weekend cyberattack and shut down or restricted entry to numerous IT techniques to stop its unfold.
Whereas the assault didn’t disrupt transportation providers within the metropolis, it did impression inner techniques utilized by employees, numerous on-line customer-facing techniques, and the power to difficulty refunds.
The assault has additionally induced ongoing disruption to TfL’s Dial-a-Journey service, which supplies door-to-door transportation for these with disabilities.
After initially stating that buyer knowledge was not believed to have been stolen, TfL confirmed at the moment that knowledge, together with clients’ names, contact particulars, e-mail addresses, and residential addresses, was stolen within the assault.
The menace actors could have additionally accessed Oyster card refund knowledge and checking account info for roughly 5,000 clients.
By way of its floor, underground, and Crossrail transport techniques, TfL supplies transportation providers to over 8.4 million London residents.
In Could 2023, Transport for London additionally suffered a knowledge breach after the Clop ransomware gang stole knowledge for roughly 13,000 clients from the group’s MOVEit Switch providers.
