The personal data of visitors to the website of Dublin’s tram system Luas has been compromised. The perpetrators are demanding one bitcoin in ransom.
The company admitted that the details of their at least 3,226 people could have been breached in the attack: “We have identified 3,226 user records at this point of the investigation which may have been compromised.”
The people who visited the website were greeted with a message on the website that their data has been compromised: “You are hacked. Some time ago I wrote that you have serious security holes. You didn’t reply. The next time someone talks to you, press the reply button. You must pay 1 bitcoin in 5 days, otherwise, I will publish all data and send emails to your users.”
Luas has asked its customers not to visit the website until its services are normalized, currently, the website has been taken down.
The only statement released by the company reads: “We will update customers via Twitter and Facebook, AA Road Watch and the media should there be any change to Luas services today. We apologize to all Luas customers for the inconvenience.”
The technical team of Luas is still investigating the matter and are working to restore the website as soon as possible.
The company has contacted “the Commissioner for Data Protection and we have in accordance with best practice contacted everyone whose information may have been compromised. We apologize to all Luas Customers for this inconvenience,” posted a message on their website.
However, services are operating normally.