Train hacking: The dangers of open networks
Written by the West Midlands Cyber Resilience Centre
If you've watched or read the news recently, you’ll definitely have heard about the recent train hack.
The incident has sparked fresh concerns over the safety of open networks after a commuter reported falling victim to a cyberattack while connected to an open Wi-Fi network on a train, resulting in personal data theft. It's a reminder that convenience can come at a high cost when cybersecurity measures are ignored.
So, why are open networks dangerous, and what can you do to protect yourself?
The train hack: What happened?
In September 2024, 19 railway stations across the UK were hit by a cyberattack that targeted public Wi-Fi.
Commuters who connected to the free Wi-Fi were shocked to see messages about past terrorist attacks pop up on their devices. Network Rail quickly shut down the Wi-Fi at these stations to investigate, and a man working for Global Reach Technologies, the company providing the internet service, was arrested on suspicion of computer misuse.
Thankfully, no other rail systems or passenger data were compromised, however, it has served to highlight just how dangerous open networks can be.
Why open Wi-Fi networks are dangerous
Public Wi-Fi, like the kind available on trains, is convenient but risky. As their name suggests, these networks are "open," meaning they either don’t require a password or, if they do, offer little in the way of encryption.
When you connect, it’s not just you and the service provider on the network as other users can access and exploit the same connection. Hackers use these unsecured networks as hunting grounds, taking advantage of the low security to intercept data transmissions.
Man-in-the-middle attacks: How hackers exploit open Wi-Fi
A common method used by hackers on public Wi-Fi is the Man-in-the-Middle (MitM) attack. In this situation, the hacker intercepts the data being exchanged between your device and the internet.
You might think you’re securely logging into your bank or email, but the hacker sees everything you’re typing in real time. Worse still, they can alter the communication, redirecting you to fake websites that look legitimate, where they can steal your credentials or plant malware on your device.
Best practices for public Wi-Fi usage
Of course, the best way to stay safe on public Wi-Fi is to just not use it, but we realise that isn’t practical for everyone especially when you're on the go. So here are steps you can take to stay safe when you do need to use it:
Use a VPN: A Virtual Private Network encrypts your internet traffic, protecting you from hackers by masking your connection. It ensures your data is secure, even if you’re on a public Wi-Fi network.
Stick to secure websites: This is an obvious one but worth a reminder. Only use websites that start with “https.” This means the site is using encryption to protect your data. It’s not foolproof but it’s a safer option than unencrypted “http” sites.
Use your mobile data for sensitive transactions: For anything requiring personal data — like checking your bank account or logging into important accounts — it’s better to use your phone’s mobile data or hotspot instead of public Wi-Fi.
Disable file sharing: Make sure file-sharing options are turned off on your devices when connected to public networks. This limits the ways hackers can access your personal files.
Turn off auto-connect: Some devices automatically connect to any available Wi-Fi, so make sure you disable this feature to avoid unknowingly joining unsafe networks.
Keep your software updated: Ensure your device's software is up to date, as many updates contain important security patches that protect you from known vulnerabilities.