The New York City subway became a target of hackers in April, officials said Wednesday. According to the Metropolitan Transportation Authority (MTA), which oversaw the underground rail system, the hackers had ties to the Chinese government.
And the American media reported on the incident. Hill, citing MTA authorities, said on April 20 that the FBI, the Cybersecurity and Infrastructure Agency (CISA) and the National Security Agency (NSA) jointly alerted the threat on April 20.
According to the portal, the authority implemented the relevant recommendations the next day. The Metropolitan Transportation Authority (MTA), which covers New York and New Jersey, has also engaged IBM and leading cybersecurity firm Mandiant for a forensic audit.
The Hill reports that three of the 18 MTA systems have been damaged. There was no personal data breach. The attack did not affect customers or contractors. The audit found no evidence that operating systems were compromised and no changes were made to major systems.
The MTA’s multi-layered security systems operate as designed, preventing the spread of the attack. We continue to enhance these complex systems and remain vigilant as cyber attacks pose a growing global threat, MTA Technology Portal Director Ravel Portnoy reports.
Transportation and Transportation Authority officials also noted that the incident was part of attacks on several federal organizations and agencies. Hackers hacked by exploiting vulnerabilities in IT company Invanti’s Pulse Connect Secure. CISA has stated that it has been helping organizations at risk since March 31.
The latest and third cyber attack on the MTA was first reported on Wednesday by the New York Times. He noted that this was done by two groups of hackers allegedly linked to China, including one that may have worked on behalf of the Chinese government.
Hill recalls that the FBI is investigating a ransomware attack on US JBS meat production and processing plants and believes that Russia-linked groups REvil and Sodinokibi are behind it. Last month, the Colonial pipeline was targeted by the criminal gang DarkSide ransomware.