"In an advisory, the company said it detected unauthorized access to files managed by an unnamed third-party supplier. Data compromised in the attack includes customer contact details and information about previous journeys. The company added that no bank details, payment card, or password information was exposed."
""We are treating this matter with the highest priority and are working closely with experts and with the supplier to understand what has happened and to make sure appropriate safeguards are in place," LNER said."
""The data exposed in the LNER breach, while not of critical security context, can still be used to generate compelling phishing documents and other attacks against a user's identity," commented Michael Tigges, senior security operations analyst at"
LNER detected unauthorized access to files managed by an unnamed third-party supplier. The breach exposed customer contact details and information about previous journeys. No bank details, payment card information, or passwords were exposed. Ticket sales and operations remained entirely unaffected. Customers were warned to be cautious of unsolicited communications, particularly those requesting personal information. LNER is working with experts and the supplier to understand the incident and implement appropriate safeguards. Security analysts warn that the exposed data can be used to craft convincing phishing messages and other identity-focused attacks.
Read at IT Pro
Unable to calculate read time
Collection
[
|
...
]