by 
Continental rail service Eurostar is contacting customers with online accounts, asking them to reset their passwords as the company works to improve the security of its users.
However, due to technical issues users are unable to reset them or even log into their accounts, locking them out completely.
The official email from Eurostar to customers states that they will need to reset their passwords to continue using their account, with a link to the subsequent page where they can do this.
The problem is, if you follow this link and when the process starts the site throws this error message: “We’re sorry, we’re having some technical problems so we can’t send the email about present. Please try again later.”
Possible security breach?
Computer Bleeping (opens in a new tab) recently tested the issue and found it to be continuing. Customers are understandably frustrated, and some express their anger the social media (opens in a new tab).
When customers keep trying to log into their account, they are greeted with a password reset prompt, which leads to the aforementioned technical error message, so they get caught in this unsolvable loop and can’t access their accounts at all.
Another twitter user speculated that this error looks like a “data breach case”, and others suspected (opens in a new tab) the official email they received as a phishing scam because of the link and not addressing them by name.
This debacle follows hot on the heels of another one at the railway operator, as last Friday, there were problems with Club Eurostar members whose reservation has completely disappeared, but it is sure customers (opens in a new tab) that the bookings were still on his system – but not visible to users.
On this issue, the company advice (opens in a new tab) msgstr “If you are unable to access your account, clear the cookies from your device and reset the password. If you are not receiving the password reset link, re-register with the same email address used for your account.”
However, some customers responded saying that these solutions did not work for them, and given the latest password reset issue, this part of the advice doesn’t work either.
BleepingComputer could not confirm whether the technical issues were due to a security incident, and when reached for comment, a Eurostar spokesperson responded with the following statement:
“Our customers have been contacted to reset their password following an update to our customer authentication system. The sudden number of customers attempting to do this has caused some technical difficulties and we are working to resolve this as soon as possible and possible. We apologize for any inconvenience this may have caused.”
