Security News > 2021 > April > UK rail network Merseyrail likely hit by Lockbit ransomware
UK rail network Merseyrail has confirmed a cyberattack after a ransomware gang used their email system to email employees and journalists about the attack.
Merseyrail is a UK rail network that provides train service through sixty-eight stations in the Liverpool City Region in England.
"We can confirm that Merseyrail was recently subject to a cyber-attack. A full investigation has been launched and is continuing. In the meantime, we have notified the relevant authorities," Merseyrail told BleepingComputer yesterday after we received a mysterious email earlier this month from the account of Andy Heath, the Director of Merseyrail.
Ransomware gang uses Merseyrail's email system against them.
While the cyberattack has not been publicly disclosed, BleepingComputer learned of the attack after receiving a strange email on April 18th from Heith's email account with the mail subject, "Lockbit Ransomware Attack and Data Theft."
Included in the email is a link to an image showing an employee's personal information that Lockbit allegedly stole during the attack.