Eurostar customers are being locked out of their accounts

News
By Lewis Maddison
published

Account holders are stuck in a security loop they can't get out of

eurostar
(Image credit: GERARD BOTTINO / Shutterstock.com)

Continental rail service Eurostar has been getting in contact with customers with online accounts, requesting they reset their passwords as the company works to enhance the security of its users. 

However, technical issues have resulted in users being unable to reset them or even log in to their accounts, effectively locking them out entirely. 

The official email from Eurostar to customers states that in order to continue using their account, they will have to reset their passwords, followed by a link to the page where they can do this. 

TechRadar Pro needs you!
We want to build a better website for our readers, and we need your help! You can do your bit by filling out our survey and telling us your opinions and views about the tech industry in 2023. It will only take a few minutes and all your answers will be anonymous and confidential. Thank you again for helping us make TechRadar Pro even better.

D. Athow, Managing Editor

The problem is, following this link and commencing the process throws up this error message form the site: "Sorry, we're having a few technical problems so we can't send the email at the moment. Please try again a little later."

A potential security breach?

BleepingComputer recently tested the issue and found that it has continued to persist. Customers are understandably frustrated, with some venting their anger on social media

When customers keep trying to enter their account, they are greeted with the password reset prompt, which then results in the aforementioned technical error message, so they are trapped in this unresolvable loop and unable to access their accounts at all.

Another twitter user speculated that this error sounded like a "data breach situation", and others suspected the official email they received as a phishing scam due to the presence of the link and not addressing them by name.

read more

> These are the best ID theft protection tools around

> Clop ransomware hackers hit a million US healthcare customers

> LastPass hacked: Should you be worried about your passwords?

This debacle follows hot on the heels of another at the railway operator, as last Friday, there were issues with Club Eurostar members having their booking disappear completely, but it assured customers that the bookings were still on its system - just not visible to users. 

On this issue, the company advised "If you are unable to access your account, clear the cookies from your device and reset the password. If you are not receiving the reset password link, re-register using the same email address used for your account."

However, some customers replied to say these solutions didn't work for them, and given the more recent password reset issue, this part of the advice doesn't work either. 

BleepingComputer could not confirm whether the technical issues were due to a security incident, and when they reached out for comment, a Eurostar spokesperson replied with the following statement: 

"Our customers were contacted to reset their password following an update to our customer authentication system. The sudden volume of customers who attempted to do this caused some technical difficulties and we are working to resolve this as soon as possible. We apologise for any inconvenience this has caused."

Lewis Maddison
Lewis Maddison
Staff Writer

Lewis Maddison is a Staff Writer at TechRadar Pro. His area of expertise is online security and protection, which includes tools and software such as password managers. 


His coverage also focuses on the usage habits of technology in both personal and professional settings - particularly its relation to social and cultural issues - and revels in uncovering stories that might not otherwise see the light of day.


He has a BA in Philosophy from the University of London, with a year spent studying abroad in the sunny climes of Malta.