In May this year, Northern installed 621 new ticket vending machines across its network, under a comprehensive modernisation scheme. Credit: Northern Rail.

Northern Rail in the UK has reportedly shut down its new self-service ticket machines following a suspected ransomware cyber attack.

The system has been offline since last week while an investigation is conducted.

In May this year, Northern Rail installed 621 new ticket vending machines (TVMs) across its network under a comprehensive modernisation scheme.

As part of the $23.65m (£17m) scheme, the rail operator introduced modern touch-screen machines at around 420 station locations.

The installation works were carried out by Flowbird Transport Intelligence.

How well do you really know your competitors?

Access the most comprehensive Company Profiles on the market, powered by GlobalData. Save hours of research. Gain competitive edge.

Company Profile – free sample

Thank you!

Your download email will arrive shortly

Not ready to buy yet? Download a free sample

We are confident about the unique quality of our Company Profiles. However, we want you to make the most beneficial decision for your business, so we offer a free sample that you can download by submitting the below form

By GlobalData
Visit our Privacy Policy for more information about our services, how we may use, process and share your personal data, including information of your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.

Northern Rail said that data related to customer and payment has not been compromised due to its ‘swift action’ with Flowbird.

The cyber attack has caused an outage to the servers that operate the ticket machines.

Northern Rail was quoted by the BBC as saying: “This is the subject of an ongoing investigation with our supplier, but indications are that the ticket machine service has been subject to a ransomware cyber attack.”

The website of the rail operator stated that the ticket machines were undergoing ‘technical difficulties’.

Passengers have been advised to buy tickets from the ticket offices or from the Northern Rail app/website for advance bookings.

The operator is currently working to have the machines up and running again soon.

Northern Rail said in a statement said: “Customers who have already bought tickets to be collected at a machine, or who would normally use ‘promise to pay’ slips, should board their booked service and either speak to the conductor or to Northern staff at their destination station.”

Last March, the UK Department for Transport (DfT) operator of last resort (OLR) started operating Northern Rail services previously managed by Arriva Rail North.