Transport for London (TfL) has confirmed that a cyberattack has meant that tube travellers have had their online payment accounts hacked.
Around 200 customers reportedly attempted to access their online Oyster card accounts and were denied access.
According to BBC News TfL said while no customer payment details had been breached it had ‘temporarily suspended’ online contactless and Oyster accounts.
A spokeswoman for TfL told BBC News that the numbers compromised are believed to be small and an initial investigation indicated the Oyster online service had not been compromised.
‘As a precautionary measure and to protect our customers’ data, we have temporarily suspended online contactless and Oyster accounts while we put additional security measures in place,’ the spokeswoman said.
TfL said it believed hackers accessed the accounts of Oyster customers via a third party breach; people who might have recycled their passwords and logins for other websites.
BBC News reports that TfL said, ‘We encourage all customers not to use the same password for multiple sites.’
The London transport body said it would be contacting customers affected and had reported the incident to the National Cyber Security Centre and British Transport Police.