UK rail network attacked by hackers four times in a year

The infiltrations appear to have been exploratory rather than disruptive but researchers say they highlight a real risk

Emma Boyle
Wednesday 13 July 2016 11:53 EDT
Comments

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

The UK rail network has been infiltrated in four major cyber attacks over the past year according to cyber security firm Darktrace.

Darktrace, the private firm responsible for the cyber safety of a large part of the UK rail network, hasn’t released much information on the nature of the attacks, or who was behind them, but has said they seemed to be exploratory rather than disruptive in intention.

This has, however, raised some fears for passenger security as experts say that hackers infiltrating the system to cause damage to the rail network is a real possibility.

Sergey Gordeychik, a security researcher at Kaspersky Lab in Moscow, told Sky News that as well as being able to gain access to harmless things like information boards, hackers could access larger computer management systems that control tains and signals.

Gordeychik said that if malicious hackers “have enough knowledge, then they can create real disaster related to train safety.“

Dave Palmer, the chief technology officer of Darktrace, told the Telegraph “In an era of imperfect defences and increasingly complex networks, determined threats can always get in. Today, all businesses can be affected, regardless of size or sector.”

Network Rail, which is not a Darktrace customer, was quick to assert that it takes the digital security of the UK rail network very seriously and Gordeychik also said that railway operators are investing in tighter security as more of the rail network moves from analogue technology to digital systems. The report will no doubt serve as reinforcement of how important this kind of security investment is.

A spokesman for Network Rail said in a statement that “Britain has the safest major railway in Europe... safety is our top priority, which is why we work closely with government, the security services, our partners and suppliers in the rail industry and security specialists to combat cyber threats.

“Digital in-cab signalling is used safely and effectively by dozens of countries in Europe and around the world and is similar to technology already in use on the Tube and other metro systems in this country.”

Join our commenting forum

Join thought-provoking conversations, follow other Independent readers and see their replies

Comments

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in