Network Rail Faces Over 7 Million Cyber Attacks in Three Months

Network Rail experienced over 7.1 million cyber attacks, primarily through malicious emails, from December 2025 to March 2026. This alarming statistic was revealed through a Freedom of Information request. The surge in attacks follows the guilty pleas of two members of the hacking group Scattered Spider, who previously disrupted Transport for London’s IT systems, costing £39 million. Network Rail successfully blocked most of these attacks, including 37,000 phishing threats. Experts warn that critical infrastructure like Network Rail is increasingly vulnerable to cyber gangs. The potential for a successful attack could lead to significant disruptions in public transport, affecting daily commuters. Cybersecurity professionals emphasize the need for robust security measures to protect against these threats.

Key Points: • Network Rail blocked over 7.1 million cyber attacks in three months. • The majority of attacks were malicious emails, including 37,000 phishing attempts. • Experts urge public sector organizations to enhance their cybersecurity strategies.