The cyberattack on Wednesday impacted eleven stations in London, Birmingham New Street, and Manchester Piccadilly.
Following an inquiry, British Transport Police revealed the individual worked for Global Reach Technology, which supplies Network Rail with some WiFi services. He is being held on suspicion of violating both the Malicious Communications Act of 1998 and the Computer Misuse Act of 1990.
The Islamophobic message was directed against passengers attempting to connect to public WiFi at stations managed by Network Railway.
News was able to view the text that was sent out in place of the WiFi login page, and it mentioned a terror act that occurred in the United Kingdom.
According to Rick Goud, chief information officer of the cyber security company Zivver, insider threats represent a serious risk to vital national infrastructure because they originate from individuals with authorized access to private networks and data.
Insiders are already ‘within’ the defenses, in contrast to external hackers who must get past security procedures.
Mr. Goud states that “monitoring user behavior, enforcing strict access controls, and fostering a security-conscious culture” are the best ways to manage the danger of insider jobs.
