Photo: Andrés Correa Guatarasma / Courtesy
Hackers with possible ties to the Chinese government breached three of the Metropolitan Transportation Authority’s (MTA) computer systems A few weeks ago, New York traffic officials revealed yesterday.
The rape occurred on two separate days in the second week of April and continued out of control until she was discovered on April 20, authorities said. Hackers did not access systems related to train operations, security or customer or employee information, said the MTA, responsible for the NYC subway and buses and the Metro North (to Connecticut) and LIRR (Long Island) suburban rail lines.
MTA officials said the Federal Agency for Infrastructure and Cybersecurity Security (CISA) ordered “fixes and patches” to be made within 24 hours of discovery of the violation. Addressing the violation cost the MTA an estimated $ 370,000.
The MTA “responded quickly and aggressively to this attack,” its chief technology officer, Rafail Portnoy, said in a statement. An external audit “found no evidence that operating systems were affected, employee or customer information was violated, there was loss of data or changes in our vital systems,” he explained.
“The MTA’s existing multi-layered security systems worked as designed, preventing the spread of the attack and we continue to strengthen these comprehensive systems and remain vigilant as cyber attacks are a growing global threat ”added.
To gain access, hackers took advantage of vulnerabilities in the remote work tool “Pulse Connect Secure”, violating three systems used by the MTA’s commuter rail and city transit divisions, according to the The New York Times, which first reported on the cyber attack.
Hackers reportedly left “web shells” to maintain backdoor access to the MTA system and also they took steps to erase the evidence of their intervention.
The MTA has 18 computer systems in total. About 5% of the MTA workforce received instructions to change your passwords as a result of the April violation, authorities said.
The attacks are part of several this year that cybersecurity experts suspect are backed by the Chinese government, either directly or indirectly.. Dozens of government agencies, contractors and financial institutions were affected by the wave of attacks, which were discovered in late April, he said. New York Post.
At the time of the attack, the NYC Subway had resumed its suspended 24-hour service in the pandemic, amid a surge in violence and several announcements of increased police presence. The 24-hour operation was resumed on May 17, after a year of partial suspension at dawn.
Hackers with suspected ties to China breached the MTA’s computer systems in April. Officials said the intrusion did not pose a risk to the millions of riders on North America’s largest transit network. https://t.co/hHo5fmh76d
— The New York Times (@nytimes) June 3, 2021
Eddie is an Australian news reporter with over 9 years in the industry and has published on Forbes and tech crunch.