RSS Alerts
Hackers attacked a Pacific Northwest railway company’s computer system, according to the TSA

Share

More services

Related Stories

  • Patricia Titus, former TSA and Unisys CISO, to join Symantec
    Infosecurity has learned that Patricia Titus, formerly global chief information security officer (CISO) of Unisys, will depart the Blue Bell, Penn.-based IT services company to join Symantec in the same role.
  • TSA probed for wireless security lapses
    The Department of Homeland Security’s Inspector General (IG) recently conducted an audit of the Transportation Security Administration (TSA), concluding that there were “high-risk vulnerabilities involving patch and configuration controls” for its wireless servers and routers.
  • Anonymous hackers hit San Francisco transport site in protest at mobile blocks
    Hacking group Anonymous has defaced a website of San Francisco's rail transport company.
  • Former TSA worker indicted for tampering
    A former worker for the Transportation Security Administration was indicted by a federal grand jury in Denver last week, on charges of trying to damage a protected computer. According to the District of Colorado attorney's office, Douglas James Duchak tried to corrupt a TSA database in the Agency's Colorado Springs Operations Center (CSOC).
  • Germany's train IT resources offline due to UPS failure
    Here's a lesson in IT contingency planning, courtesy of Deutsche Bahn, the German railway network company, whose IT systems - including station indicator boards, electronic ticketing, self-service counter tickets and Internet pages - all went off line on January 14 due to single UPS failing.

Top 5 Stories

News

Pacific Northwest train signals disrupted by hacker, says TSA

25 January 2012

Hackers, possibly from abroad, attacked a Pacific Northwest railway company’s computer system, disrupting railway signals in December, according to the US Transportation Security Administration (TSA).

Train service of the unnamed railroad "was slowed for a short while" and rail schedules were delayed about 15 minutes on Dec. 1 as a result of the computer intrusion. The following day, shortly before rush hour, a "second event occurred" that did not affect schedules, according to a TSA document obtained by Nextgov. The memo summarized discussions TSA had with railroad industry representatives on Dec. 20 regarding the incident.

"Some of the possible causes lead to consideration of an overseas cyberattack", the memo stated. TSA investigators discovered two IP addresses used by the intruders on Dec. 1 and a third on Dec. 2, the document noted, but it did not say in which country the IP addresses were located. The TSA sent out notice of the incident, including the three IP addresses, to several hundred railroad companies and public transportation agencies.

However, Holly Arthur, a spokeswoman for the Association of American Railroads, denied that there was a recent computer hack of a US railroad. She told Nextgov that there was “no targeted computer-based attack on a railroad. Railroads closely monitor cyber security as a fully integrated part of both the industry's overall security plan, as well as individual company plans. Continuous coordination on cyber security occurs across the industry and with the federal government.”
 

This article is featured in:
Internet and Network Security • Public Sector

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012