Like many others, when I am traveling on public transport in London – and many other cities – I simply wave my phone over a sensor to pay for my fair. We are putting a lot of trust in those systems being secure. When they are not, then there could be problems.
Transport for London (TfL) has limited customer access to various parts of its online operation, whilst a cyber incident is investigated and dealt with.
Transport for London still affected by ‘ongoing cyber incident’ – BBC News
To quote the BBC – even though the incident is ongoing and not fully investigated yet:
“TfL reiterated a previous statement that there was “no evidence” customer data had been compromised and there was currently “no impact” on its transport services.”
Who knows for sure?
Your takeaway
During any incident – cyber or not – your organisation’s communications with stakeholders and the media is crucial to handling and recovering from that incident. Do not jump the gun with statements that you may have to retract when further evidence comes to light.
Having some prepared communication templates will be useful during “incident stress”.
Clive Catton MSc (Cyber Security) – by-line and other articles
