Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
Hackers Jailed for £29M TfL Cyber Attack

Hackers Jailed for £29M TfL Cyber Attack

Posted on July 16, 2026 By CWS

Two young hackers, Owen Flowers and Thalha Jubair, have been sentenced to five and a half years each for their involvement in a significant cyber attack on Transport for London (TfL). The verdict was delivered by Woolwich Crown Court on 16 July 2026, following their guilty plea just before the trial was scheduled to commence.

Impact of the Cyber Attack

The 2024 cyber intrusion severely disrupted TfL’s operations, rendering 148 systems inoperable. As a result, all 27,000 employees were required to reset their passwords in person. The financial impact was substantial, with losses and recovery expenses amounting to £29 million, as assessed by both the National Crime Agency (NCA) and the Crown Prosecution Service (CPS).

The hackers exploited vulnerabilities over a few days, impacting vital services such as Dial-a-Ride, the digital payments channel, and the issuance of concessionary travel cards. Additionally, sensitive customer data, including names and email addresses, was accessed, raising concerns about data privacy and security.

Legal Proceedings and Consequences

Flowers and Jubair admitted to charges under Section 3ZA of the Computer Misuse Act 1990, the most serious offense under the Act. Their actions were deemed reckless, potentially endangering human welfare. Their case marks the first successful prosecution under this section, making it a landmark moment in UK cybercrime law enforcement.

The NCA highlighted the potential economic threat, estimating that a complete shutdown of TfL’s network could have cost the UK economy up to £56 billion. However, TfL managed to contain the damage by proactively pulling down their network.

Broader Implications and Future Outlook

This case has exposed the vulnerabilities within critical infrastructure and the grave consequences of cyber attacks. The NCA and CPS believe that the arrests have significantly disrupted the operations of the cybercriminal group Scattered Spider, to which the hackers belonged. Nevertheless, there are concerns that other criminals may continue to exploit similar tactics under the same or different brands.

Authorities emphasize the importance of early law enforcement involvement in similar incidents to prevent further damage. Additionally, there is a push for Cyber Crime Risk Orders, which would allow courts to impose restrictions on individuals’ digital activities, thereby enhancing cyber security measures.

This case underscores the need for robust cyber defenses and highlights the ongoing challenges in combating sophisticated cyber threats. As technology evolves, so too must the strategies to protect against such intrusions, ensuring the safety and security of critical infrastructure and sensitive data.

The Hacker News Tags:CPS, cyber attack, Cybercrime, data breach, Hackers, London, NCA, Owen Flowers, Scattered Spider, security breach, TfL, Thalha Jubair, Transport for London, UK

Post navigation

Previous Post: AnyDesk Vulnerability Risks Denial-of-Service Attacks
Next Post: Top 10 Firewall as a Service Providers for 2026

Related Posts

Black Basta Ransomware Leader Added to EU Most Wanted and INTERPOL Red Notice Black Basta Ransomware Leader Added to EU Most Wanted and INTERPOL Red Notice The Hacker News
Malicious npm Packages Exploit PostCSS Tools for Windows RAT Malicious npm Packages Exploit PostCSS Tools for Windows RAT The Hacker News
Hacktivist Surge: 149 DDoS Attacks Across 16 Nations Hacktivist Surge: 149 DDoS Attacks Across 16 Nations The Hacker News
Google Fixes Chrome 0-Days, AWS Breach, AI Security Risks Google Fixes Chrome 0-Days, AWS Breach, AI Security Risks The Hacker News
Critical Flaw in MCP Protocol Poses Major AI Supply Chain Risk Critical Flaw in MCP Protocol Poses Major AI Supply Chain Risk The Hacker News
MuddyWater Exploits Teams for Credential Theft in Covert Attack MuddyWater Exploits Teams for Credential Theft in Covert Attack The Hacker News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • Top 10 Firewall as a Service Providers for 2026
  • Hackers Jailed for £29M TfL Cyber Attack
  • AnyDesk Vulnerability Risks Denial-of-Service Attacks
  • PhantomEnigma Hijacks Government Sites for Malware
  • Linux Welcomes AI with Responsible Use, Says Torvalds

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • Top 10 Firewall as a Service Providers for 2026
  • Hackers Jailed for £29M TfL Cyber Attack
  • AnyDesk Vulnerability Risks Denial-of-Service Attacks
  • PhantomEnigma Hijacks Government Sites for Malware
  • Linux Welcomes AI with Responsible Use, Says Torvalds

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark