Extract from Northern's latest update to Stakeholders
"TVMs: Earlier this week we experienced technical difficulties with our ticket vending machines (TVMs), which meant all have had to be taken off-line. We continue to investigate the issue, alongside our supplier, and it appears the ticket machine server has been subject to a ransomware cyber-attack. Working with the supplier, swift action was taken; the incident has only affected the servers which operate the ticket machines. Moreover, customer and payment data has not been compromised. We are working to restore normal operation to our TVMs as soon as possible. In the meantime, we are advising customers to either use Northern’s mobile app or website to purchase tickets in advance and, where necessary, to collect those from one of our ticket offices. Clearly, those offices can also be used to buy tickets. As promise to pay and pre-paid tickets cannot be obtained, we are advising customers to board their scheduled service. Penalty fares are suspended while we are in this position, which may continue for some time."