London North Eastern Railway (LNER) has urged passengers to remain vigilant after a cyber-attack on one of its third-party suppliers exposed customer contact details and elements of journey history.
The train operator stressed that sensitive financial information, passwords and ticketing systems were not affected by the breach, and services are continuing to run as normal. However, the company warned customers to be alert to unsolicited emails or messages, particularly those requesting personal data.
LNER described the incident as being treated “with the highest priority” and said it is working alongside cybersecurity experts and the supplier involved to determine the full extent of the breach. Additional security measures are being implemented, and updates will be shared with passengers as the investigation progresses.
The attack underscores the increasing vulnerability of UK transport networks and their supply chains to cybercrime. While the compromised supplier did not have access to bank or payment records, the exposure of customer contact information raises the risk of phishing attempts and identity fraud.
It is the latest in a string of high-profile cyber incidents to hit British businesses and transport providers. Last year, Transport for London reported a breach that compromised the financial details of around 5,000 customers. Earlier this month, production at Jaguar Land Rover was disrupted following a ransomware attack, while retailers including Marks & Spencer, Harrods and the Co-op have also faced cyber intrusions this year.
Industry experts warn that such incidents are becoming increasingly common as criminals exploit complex supply chains. Transport operators, which rely heavily on third-party contractors for digital services, are viewed as particularly exposed. “Supply chain vulnerabilities remain one of the most significant risks for critical infrastructure,” one cybersecurity analyst said. “Companies need to ensure not only their own systems, but also those of their partners, are protected to the highest standards.”
LNER said passengers do not need to change their travel plans but should remain cautious about suspicious messages in the coming weeks. Customers are advised not to click on unfamiliar links or share personal information with unverified sources.
The company added that it is liaising with regulators and will continue to work closely with specialists to strengthen its defences. “We take the protection of our customers’ data extremely seriously,” a spokesperson said. “We are committed to ensuring all appropriate measures are in place to safeguard against future incidents.”
