Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

TSA Renews Rail Cybersecurity

October 25, 2023
Reading Time: 4 mins read
in News

The Transportation Security Administration (TSA) has taken action to bolster cybersecurity in the passenger and freight railroad sector by renewing critical directives that were set to expire. These directives, divided into three distinct rules, require operators to annually test elements of their cybersecurity incident response plans, provide updated cybersecurity assessment plans, and report on the effectiveness of their efforts.

Furthermore, the directives mandate the development of network segmentation policies, access control measures, threat detection policies, and timely patching processes for operating systems, applications, drivers, and firmware to enhance cyber resilience. TSA Administrator David Pekoske emphasized the importance of this renewal in safeguarding the nation’s railroad systems against evolving cyber threats, highlighting the collaborative efforts with the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Railroad Administration.

The origins of these regulations can be traced back to October 2021, prompted by the Colonial Pipeline ransomware attack, which thrust cybersecurity into the federal government’s spotlight. The rules were first renewed last October alongside additional measures, and the latest renewal, issued on Monday, extends the regulations for another year.

Additionally, in response to criticism from experts and stakeholders who found the initial regulations too prescriptive, TSA officials revised the rules in 2022, shifting the focus to performance-based criteria, offering critical infrastructure organizations various methods to protect against operational disruptions and degradation.

The rail industry has experienced a series of cyberattacks in recent years, including ransomware attacks, data breaches, and hacking incidents. These incidents have raised alarms about potential vulnerabilities in critical systems and the potential for backdoors left by cybercriminals.

Given the ongoing threats posed by nations like Russia and China, TSA and CISA officials have cautioned against potential destructive or disruptive cyberattacks on American pipelines, railroads, and other critical infrastructure, particularly in the context of a potential invasion of Taiwan. The renewal of these directives underscores the significance of safeguarding the rail industry and critical infrastructure in an increasingly digitized and interconnected world.

References:
  • TSA renews cybersecurity requirements for passenger and freight railroad carriers
  • MEMORANDUM – Covered Public Transportation and Passenger Railroad Owner/Operators
Tags: Cyber NewsCyber News 2023CybersecurityOctober 2023RansomwareTransportationTSA
ADVERTISEMENT

Related Posts

Operation Eastwood Hits Pro-Russian Hackers

Ex-US Soldier Pleads Guilty in Telecom Hacks

July 17, 2025
Operation Eastwood Hits Pro-Russian Hackers

Operation Eastwood Hits Pro-Russian Hackers

July 17, 2025
Operation Eastwood Hits Pro-Russian Hackers

Chinese Firms Amplify U.S. Cyberattacks

July 17, 2025
Google Realeases Critical Chrome Update

Police Disrupt Diskstation Gang

July 16, 2025
Google Realeases Critical Chrome Update

China’s Salt Typhoon Hacked US Guard

July 16, 2025
Google Realeases Critical Chrome Update

Abacus Dark Web Market Exit Scam

July 16, 2025

Latest Alerts

SonicWall Zero-Day RCE Exploited

Stealthy JavaScript Attacks via SVG Files

Malicious Telegram APK Campaign Uncovered

Google Realeases Critical Chrome Update

Interlock deploys new PHP RAT via FileFix

Android Malware Konfety Evolves

Subscribe to our newsletter

    Latest Incidents

    Cyberattack Strikes Air Serbia

    Customer Data Breach at Seychelles Bank

    Ukrainian Hack Hits Russian Drone Firm

    Albemarle County Ransomware Attack

    Fitify Leaks 138K User Progress Photos

    Millions Affected By Episource Data Breach

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial