Transport company Go-Ahead suffers cyber attack

The Newcastle-based business said ‘unauthorised activity’ was detected on its network on Monday.

Neil Lancefield
Tuesday 06 September 2022 03:35 EDT
One of the UK’s biggest bus companies has fallen victim to a cyber attack (Emily Whitfield-Wicks/PA)
One of the UK’s biggest bus companies has fallen victim to a cyber attack (Emily Whitfield-Wicks/PA) (PA Wire)

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

One of the UK’s biggest bus companies has fallen victim to a cyber attack.

Go-Ahead Group announced that it is “managing a cyber security incident” after “unauthorised activity” was detected on its network on Monday.

The company also runs train operator Govia Thameslink Railway in a joint venture with Keolis, but said that was unaffected as it runs on a different system.

A spokesman for Go-Ahead said there was “no indication that any customer data has been compromised”.

There is no impact on UK or international rail services

Go-Ahead

In a statement, the Newcastle-based company said: “Upon becoming aware of the incident, Go-Ahead immediately engaged external forensic specialists and has taken precautionary measures with its IT infrastructure whilst it continues to investigate the nature and extent of the incident and implement its incident response plans.

“Go-Ahead will continue to assess the potential impact of the incident but confirms that there is no impact on UK or international rail services which are operating normally.”

It added that it has notified the Information Commissioner’s Office (ICO) “as a precaution”.

Go-Ahead is the largest bus operator in London, and also runs services elsewhere in England, particularly in the North East, East Anglia and the South.

British Airways was fined £20 million by the ICO over a 2018 data hack.

Investigators found that the airline should have identified the security weaknesses which enabled the attack to take place, and failed to protect the personal and financial details of more than 400,000 customers.

Italy’s state railway company Ferrovie dello Stato temporarily suspended some ticket sales in March after discovering signs of a cyber attack.

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in