Rail firms to face huge fines for IT failures
Airlines, rail companies and other providers of key services will be forced to improve their systems
Airlines and rail companies that blame computer meltdowns for customer chaos will face huge fines, ministers will announce today. They plan to force organisations that provide “essential services” in areas including transport, energy and health to improve their IT systems. Those that suffer critical IT failures because they have not done enough to protect their systems could ultimately be fined as much as £17 million.
AIRLINES and rail companies that blame computer meltdowns for customer chaos will face huge fines, ministers say.
They will today announce plans to force organisations that provide “essential services” in areas including transport, energy and health to improve their IT systems.
Those that suffer critical IT failures because they have not done enough to protect their systems could ultimately be fined as much as £17million or 4 per cent of global turnover.
Organisations will also face fines if they fail to protect themselves from cyber attacks which could put services that people rely on at risk.
Recent examples include British Airways, when tens of thousands of customers were hit by flight delays and cancellations after a major IT failure took place over a bank holiday weekend. Ministers also highlighted the “Wannacry” cyber attacks in May which crippled parts of the health service after infiltrating its antiquated computer system.
Matthew Hancock, the Digital Minister, said: “Adverse incidents affecting such systems could cause significant damage to the UK economy, impeding economic activity and undermining user confidence, or result in substantial financial losses.
“The magnitude, frequency and impact of network and information system security incidents is increasing… There is a need to therefore improve the security of network and information systems across the UK, with a particular focus on essential services”.
The measures will apply to transport companies, energy and water providers, hospitals and internet companies. The Government insists that the fines will be a “last resort”.
Ciaran Martin, head of the National Cyber Security Centre, said: “We welcome this consultation and agree that many organisations need to do more to increase their cyber security.
“The NCSC is committed to making the UK the safest place in the world to live and do business online, but we can’t do this alone.
“Everyone has a part to play and that’s why since our launch we have been offering organisations expert advice on our website and the Government’s Cyber Essentials Scheme.”
The Government also recently announced that carmakers would have to provide more protection for internetconnected vehicles from cyber attacks, under new guidance.
Smart vehicles, allowing drivers to access maps, travel information and digital radio services, are becoming increasingly common on roads in Britain.
It is feared that hackers could target them to access personal data, steal cars with keyless entry or take control to potentially cause accidents.
♦ Plans to scrap landing cards for noneu travellers have been criticised by experts, who warned the Government that the decision would undermine border security.
It comes two days after the Home Office said it would drop requirements to fill in the card, which is currently required of the 16million visitors and migrants arriving at Britain’s airports every year.