Dublin’s Luas tram system threatened with private data leak
Hackers have threatened Dublin's tram system Luas with the leak of private data should the company fail to pay a ransom in Bitcoin.
On Thursday, the tram service provider, operational in Ireland, informed customers of the security incident in a message posted to Twitter, saying that the website was "compromised" and a "malicious message was put on the home page," viewable to early visitors visiting the domain to look up routes and find information relating to the service.
Earlier on in the day, Luas had asked customers not to visit the website due to an "ongoing issue." Physical services are running as normal; however, at the time of writing, the Luas website is offline.
The message in question left behind when the Luas website was defaced claimed that the service had been previously told about severe security deficiencies in the website, but no action was taken.
As a result, the cybercriminals responsible demanded one Bitcoin (BTC) to be paid within five days, the current equivalent of $3,843, or data that has allegedly been stolen would be published.
The threat of data theft may or may not be genuine, but it should be noted that while the main Luas domain is down to allow technicians to regain control of the website -- and patch any security holes they find -- the tram service's payment gateway appears to be online and operational.
source zdnet
Industry: Cyber Security News
Latest Jobs
-
- ISO27001 Information Security Consultant
- London
- Up to £60,000
-
Information Security Consultant with ISO27001 audit and advisory experience is needed for a client facing opportunity with a Cyber Security company in London. Experience with ISO27001 is essential. Activities of the role will include, but not be limited to providing advice to clients, Gap analysis, Risk assessment, analysis, ISO27001 Audits. Experience taking a client through to iso 27001 certification is highly desirable. This Cybersecurity consultancy, who are dedicated to improving and investing in their client's businesses and employees careers, are looking for a security consultant due to expansion. All the training and development will be provided to help them specialise into the PCI industry / Security advisory industry. Ideal certifications ISO27001 Lead Auditor, ISO 27001 Lead implementer, PCI ISA. Aspiring PCI QSA. Other certifications such as CISSP, CISM or CISA are beneficial to have but not required. The ability to SC Clearance is essential. MUST be UK based and realistically able to commute to London. Structured career path, technical training, diverse and interesting clients available. (ISO70001 Lead Auditor, ISO 27001 Lead implementer, PCI ISA. Aspiring PCI QSA, ISO27001 Information Security Consultant) Contact me on chris.holt@dclsearch.com or 07884666351 or 02086634030 Ref: CH7514
-
- Google Cloud Data Engineer
- London
- Up to £650 Per Day
-
Google Cloud Data Engineer London Up to £650 Per Day Duration: 3 months (Potential to extend) We are currently working with a leading Google Cloud partner who are currently looking for a Google Cloud Data Engineer in London. The Google Cloud Data Engineer will be responsible for a new, on-site project (start to finish) designing and implementing a data cataloguing platform using Google Cloud. Current Experience Required Google Cloud Data Analytics (Data Engineering, Data Mining, Data Cataloguing etc.) Cloud PUB / SUB Ref: PG7512
-
- Professional Services Security Engineer
- United Kingdom
- £65,000
-
Professional Services Security Engineer with current checkpoint experience is needed for the UK focused client facing implementation/migration, configuration position. The role will be utilising the latest versions of Checkpoint, so someone accredited with either CCSA or CCSE, on at least version R80 is ideal. The Professional Services Security Engineer must have current technical implementation experience using Checkpoint, however, I would look at someone with strong firewalling experience around other vendors such as Palo Alto and Fortinet. Being a multi-vendor professional services business, there is scope for this person to receive training and experience within other vendors. This is a UK wide role, the company in question has 2 offices across the UK, however, there is scope for this person to be home based when not on client site. Vendor training and exposure actively promoted.
-
- eDiscovery / Forensic Consultant, London, £65,000
- London
- £65,000
-
Senior eDiscovery / forensic consultant needed to join a business is recognised for helping top tier clients across eDiscovery, Forensics, Incident Response, Advisory etc. Known the for quality, consistency of work throughout the world. This individual MUST be London based, client facing with deep technical hands on experience with eDiscovery / forensic tools, techniques and best practice. Hands on experience using Relativity is essential. The position is split between engaging with client stakeholders to provide consultancy, technical engaging to identify, preserve, collect, process, review and produce electronically stored information in litigation and manage / provide support for the other internal business functions. This will include, but not be limited to; manging client engagements, collecting / processing data within Relativity, delivering / providing guidance customisation on reports, advising clients. Any of the following certifications are highly desirable. • Relativity Certified Administrator (RCA) • Relativity Processing Specialist • Relativity Analytics Specialist Travel to client site will be involved. Fluency in multiple European languages is highly desirable. All details kept in the strictest of confidence. Contact me on Chris.holt@dclsearch.com 07884666351 or 02086634030