TransLink IT system still not fully restored after cyberattack
Posted January 19, 2021 11:27 am.
Last Updated January 19, 2021 11:30 am.
VANCOUVER (NEWS 1130) — More than a month after hackers took control of parts of TransLink’s IT network, work continues to fix some persisting problems.
While TransLink’s Ben Murphy explains there aren’t widespread issues, he acknowledges parts of the network remain encrypted and inaccessible as work to restore full functionality continues.
TransLink’s virtual private network (VPN) has been disabled as a security precaution, meaning some work-from-home employees say they had to physically go to the office, which isn’t ideal during the pandemic.
“The ransomware attack has not really impacted in any way whether people are working at home or not. If they do need to access files from the server, they can come in and do that,” Murphy says. “They should be able to move those to the desktop so they can continue to work from home as per usual.”
Related Stories:
-
TransLink CEO confirms ransomware hack, says payment info not compromised
-
Hackers may have accessed employee’s personal and banking information in TransLink cyberattack
-
Multiple TransLink services still down due to ‘suspicious network activity’
-
No guarantee personal info wasn’t accessed in TransLink hack: minister
He adds there isn’t a need to access VPN on a day-to-day basis, so many employees aren’t impacted, including Murphy and his team.
“It is taking some time. Obviously, we would like to see this all fixed as soon as possible, so we really do appreciate people’s patience and we bring those systems back online.”
Rider impacts at this point are minimal, with the Trip Planner and U-pass page still offline. TransLink is pointing commuters to Google Maps as an alternative.
TransLink suspended several of its services in early December after a cyberattack sent ransom letters through the transit authority’s printers. Hackers threatened to release certain information if demands weren’t met.
Since then, it has been suggested there is no way to confirm personal information wasn’t accessed, and that it’s possible the hack compromised employees’ information.
