LNER has warned customers to be vigilant after a cyber-attack on a third-party supplier led to the theft of passenger contact details and some journey records. The state-owned train operator, which runs services on the east coast mainline between London and Scotland, confirmed that no bank or payment details or password information were compromised.
The breach, which occurred at an unidentified third-party supplier, did not affect LNER's schedules or ticket sales, and trains continue to run as normal. LNER stated it is treating the matter with the highest priority and is working with experts and the supplier to investigate and implement safeguards.
Customers are advised to be cautious of unsolicited communications, especially those requesting personal information, and not to respond if in doubt. LNER said customers do not need to inform their banks as payment data was not accessed.
The incident follows a series of cyber-attacks on UK transport and businesses, including a breach at Transport for London a year ago that affected 5,000 customers, and a recent hack at Jaguar Land Rover that paused production.



