Overview
- The Department for Transport confirmed it is working with the National Cyber Security Centre to assess whether Yutong buses in Britain can be remotely deactivated.
- Norway’s operator Ruter reported SIM‑based access to battery and power controls on a tested Yutong bus, concluding the vehicle could in theory be stopped, prompting Denmark’s Movia to launch its own review.
- Roughly 700 Yutong buses operate in the UK, with fleets in cities including Glasgow, Nottingham and parts of south Wales, according to industry reporting and operators.
- Yutong says it complies with local laws, stores EU vehicle data encrypted in an AWS Frankfurt facility and requires customer authorization for system access, while some UK operators say their vehicles lack remote update capability.
- Cybersecurity specialists note that remote intervention risks stem from connected vehicle design generally, and operators are weighing mitigations such as firewalls or removing SIM connectivity that could also curtail useful telemetry.