**MASSIVE DATA BREACH: TfL Hack in 2024 Impacts 10 Million Customers, BBC Reveals**
**LONDON** – Transport for London (TfL) has been hit by a major cyberattack in 2024, compromising the data of approximately 10 million people, the BBC has revealed. The staggering scale of the breach, which reportedly occurred sometime this year, underscores significant security concerns for public transport users across the capital.
While specific details regarding the nature of the compromised data are yet to be fully disclosed, such attacks typically target personal information, payment details, or travel patterns, raising immediate privacy and security alarms for a substantial portion of London’s population.
In response to the BBC’s revelations, TfL issued a statement reiterating its commitment to transparency and action. A spokesperson stated, “TfL insists it has ‘kept customers informed throughout this incident and will continue to take all necessary action’.”
However, the revelation of the 10-million figure by the BBC, rather than TfL directly at the outset, is likely to prompt questions about the timing and scope of their initial communications with affected customers. It remains unclear how and when TfL first became aware of the full extent of the breach and what specific information was shared with those impacted prior to this latest disclosure.
The incident adds to a growing list of high-profile cyberattacks against critical infrastructure and public services globally, highlighting the increasing sophistication of threat actors and the ongoing challenges organisations face in protecting sensitive data.
TfL is expected to provide further details on the investigation, the measures being taken to secure its systems, and guidance for customers who may be affected. This typically includes advice on monitoring bank accounts, changing passwords, and being vigilant against phishing attempts. As the investigation unfolds, both TfL and regulatory bodies will face scrutiny over the adequacy of their cyber security protocols and their response to the breach.
