News

Two men plead guilty over £39m TfL cyber attack

Two Men Plead Guilty in £39m TfL Cyber Attack Case

Two men plead guilty over 39m TfL – Transport for London (TfL) faced significant disruption after a cyberattack that cost the operator £39 million. Two individuals, Thalha Jubair, 20, from east London, and Owen Flowers, 18, from Walsall, West Midlands, have now admitted to involvement in the incident. Their guilty pleas were entered on the first day of a six-week trial at Woolwich Crown Court on Monday.

Conspiracy and Breach Details

The men confessed to charges under the Computer Misuse Act, specifically conspiring to conduct unauthorised acts against TfL. The attack began on 31 August 2024 and disrupted services for three months. Investigators estimate that 10 million customers were impacted by the breach. Flowers also admitted to targeting systems at Sutter Health and SSM Healthcare Corporation in the U.S.

“Cyber crime may appear faceless and distant compared to other crime types, but the infiltration of TfL’s systems shows it has real-world consequences and impacts hugely on the public.”

The breach led to the shutdown of TfL’s Oyster photocard application system for children and young people. Data from the Oyster refunds system was accessed, causing delays for some customers. During the attack, online services went offline, preventing access to information boards.

Investigation and Evidence

The National Crime Agency (NCA) identified the Scattered Spider criminal group as the likely perpetrators. The group has been linked to previous attacks on Jaguar Land Rover and Marks and Spencer. Investigators seized digital devices from Flowers’ home, including laptops, hard drives, and USBs. One laptop showed connectivity to TfL’s infrastructure, while videos depicted Jubair accessing systems during the breach.

Flowers was found to have used an online platform to sell stolen credentials. The pair communicated via Telegram and a collaborative workspace, according to the NCA. The agency described the case as a “lengthy, highly complex and painstaking investigation,” highlighting the group’s role in disrupting critical UK infrastructure.

Next Steps and Reactions

Judge Mr Justice Turner acknowledged the legal teams for their efforts in securing a “satisfactory way forward.” The men will be sentenced on 15 July. Andy Lord, London’s Transport Commissioner, welcomed the guilty pleas, stating that TfL continuously monitors systems to protect customer data and ensure secure access.

For more updates, listen to BBC Radio London on Sounds and follow BBC London on Facebook, X, and Instagram. Share your story ideas with hello.bbclondon@bbc.co.uk.

Leave a Comment