Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

TSA Renews Rail Cybersecurity

October 25, 2023
Reading Time: 4 mins read
in News

The Transportation Security Administration (TSA) has taken action to bolster cybersecurity in the passenger and freight railroad sector by renewing critical directives that were set to expire. These directives, divided into three distinct rules, require operators to annually test elements of their cybersecurity incident response plans, provide updated cybersecurity assessment plans, and report on the effectiveness of their efforts.

Furthermore, the directives mandate the development of network segmentation policies, access control measures, threat detection policies, and timely patching processes for operating systems, applications, drivers, and firmware to enhance cyber resilience. TSA Administrator David Pekoske emphasized the importance of this renewal in safeguarding the nation’s railroad systems against evolving cyber threats, highlighting the collaborative efforts with the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Railroad Administration.

The origins of these regulations can be traced back to October 2021, prompted by the Colonial Pipeline ransomware attack, which thrust cybersecurity into the federal government’s spotlight. The rules were first renewed last October alongside additional measures, and the latest renewal, issued on Monday, extends the regulations for another year.

Additionally, in response to criticism from experts and stakeholders who found the initial regulations too prescriptive, TSA officials revised the rules in 2022, shifting the focus to performance-based criteria, offering critical infrastructure organizations various methods to protect against operational disruptions and degradation.

The rail industry has experienced a series of cyberattacks in recent years, including ransomware attacks, data breaches, and hacking incidents. These incidents have raised alarms about potential vulnerabilities in critical systems and the potential for backdoors left by cybercriminals.

Given the ongoing threats posed by nations like Russia and China, TSA and CISA officials have cautioned against potential destructive or disruptive cyberattacks on American pipelines, railroads, and other critical infrastructure, particularly in the context of a potential invasion of Taiwan. The renewal of these directives underscores the significance of safeguarding the rail industry and critical infrastructure in an increasingly digitized and interconnected world.

References:
  • TSA renews cybersecurity requirements for passenger and freight railroad carriers
  • MEMORANDUM – Covered Public Transportation and Passenger Railroad Owner/Operators
Tags: Cyber NewsCyber News 2023CybersecurityOctober 2023RansomwareTransportationTSA
ADVERTISEMENT

Related Posts

UK Sanctions Kyrgyz Banks, Crypto Ties

UK Sanctions Kyrgyz Banks, Crypto Ties

August 21, 2025
UK Sanctions Kyrgyz Banks, Crypto Ties

Elastic Denies Zero-Day RCE in Defend

August 21, 2025
UK Sanctions Kyrgyz Banks, Crypto Ties

Scattered Spider Hacker Sentenced

August 21, 2025
DOJ Charges Man Behind RapperBot Botnet

DOJ Charges Man Behind RapperBot Botnet

August 20, 2025
DOJ Charges Man Behind RapperBot Botnet

Citizen Lab Exposes Hidden VPN Flaws

August 20, 2025
DOJ Charges Man Behind RapperBot Botnet

Mozilla Warns Germany on Ad Blockers

August 20, 2025

Latest Alerts

QuirkyLoader Spreads RATs, Keyloggers

GenAI Used by Hackers for Phishing

Malicious Chrome VPN Steals Data

RingReaper Malware Hits Linux Servers

Mozilla Security Advisory AV25-529

Microsoft Issues Windows Fix Update

Subscribe to our newsletter

    Latest Incidents

    Comet AI Browser Duped by Fake Shops

    China Briefly Cuts Off Global Internet

    Orange Belgium Data Breach Hits 850K

    NY Business Council Data Breach Hits 47K

    Ransomware Gang Hacks Inotiv Firm

    Intel Employee Data Exposure Flaw

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial