Ukraine Railway Systems Attacked By Russian Hackers

Uploaded on 2025-03-25 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-Russia, FREE TO VIEW

Online train tickets have been unavailable in Ukraine due to a sophisticated cyber hack, which the Ukrainian Ministry of Justice says Russia is behind this attack. Ukraine’s national railway company Ukrzaliznytsia, confirmed in a statement that the cyber attack had taken place on March 24.

The company said this attack was “very systematic, complex, and multi-level”. It took down its online portal, rendering the sale of tickets online impossible at least until March 25. So far, back-up protocols are keeping trains running 

Ukrzaliznytsia’s infrastructure is frequently targeted by Russian drones and missiles and cyber attacks. 
Following the latest attack, the rail company doubled the number of ticket windows and staff at several stations, including Kyiv, to accommodate passengers. Users were advised to purchase domestic and international paper tickets through those ticket offices operating with more staff. Passengers aiming to travel after March 25th have been advised to refrain from visiting ticket offices to avoid queues and to allow those with imminent departures to be served.

Ukrzaliznytsia stated that its experts are working closely with the Cyber Department of the Security Service of Ukraine (SBU) and the Ukrainian Computer Emergency Response Team (CERT-UA) to restore all disrupted services. “As Ukrzaliznytsia has been the target of cyber-attacks in the past, the company has implemented backup protocols,” the company added.

“The key thing is that the enemy was not able to disrupt the train schedule: trains are running stably, on schedule, and without delays, and all operational processes have been adjusted to a backup mode. The railway continues to operate despite physical attacks on infrastructure and will not be stopped by even the most malicious cyber-attacks.”

A complete restoration of user-facing online services will only be possible once the railway company and its partners have tested services for potential vulnerabilities.

With many Ukrainian airports shut down and air traffic suspended due to the Russian invasion, Ukraine's railways remain a vital lifeline for the country's economy. 

Kyiv Indepndent   |  Pravda   |  Railtech  |   Bleeping Computer  |   Infosecurity Magazine   |   The Record     

Image: @Ukrzaliznytsia

You Might Also Read: 

Poland’s Train Network Disrupted:

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Sign up for our FREE Weekly Newsletter
Combatting Rising AI Attacks With AI-Powered Defences  »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

VMworld

VMworld

VMworld is a global conference for virtualization and cloud computing, including associated security issues.

Spanish National Cybersecurity Institute (INCIBE)

Spanish National Cybersecurity Institute (INCIBE)

INCIBE undertakes research, service delivery and coordination for building cybersecurity at the national and international levels.

Office of the National Security Council (UVNS) - Croatia

Office of the National Security Council (UVNS) - Croatia

UVNS coordinates, harmonizes the adoption and controls the implementation of information security measures and standards in the Republic of Croatia.

Inseego

Inseego

Inseego provides Enterprise SaaS solutions and IoT & Mobile solutions, which together form the backbone of intelligent, reliable and secure IoT services with deep business intelligence.

Montimage

Montimage

Montimage develops tools for testing and monitoring networks, applications and services; in particular, for the verification of functional, performance (QoS/QoE) and security aspects.

BlackScore

BlackScore

BlackScore is a technology company seeking to disrupt risk assessment using AI-driven technology.

Stratum Security

Stratum Security

Stratum Security is an information security consulting company that focuses on providing clear and concise risk guidance to its clients through high quality assessment services.

Ethyca

Ethyca

Ethyca builds automated data privacy infrastructure and tools for developers and privacy teams to easily build products that comply with GDPR, CCPA Privacy Regulations.

National Cyber Coordination & Command Centre (NC4) - Malaysia

National Cyber Coordination & Command Centre (NC4) - Malaysia

NC4 is established as a center for dealing with cyber threats and crisis at the national level in Malaysia.

Cyber Resilience Centre for Wales (WCRC)

Cyber Resilience Centre for Wales (WCRC)

The Cyber Resilience Centre for Wales (WCRC) is part of the national roll out of Cyber Resilience Centres in the UK which began in 2019.

Association of anti Virus Asia Researchers (AVAR)

Association of anti Virus Asia Researchers (AVAR)

AVAR's mission is to prevent the spread of and damage caused by malicious software, and to develop cooperative relationships among anti-malware experts in Asia.

Gotham Digital Science (GDS)

Gotham Digital Science (GDS)

Gotham Digital Science is an international security services company specializing in Application and Network Infrastructure security, and Information Security Risk Management.

Hackurity.io

Hackurity.io

Hackurity.io is a high energy IT security start-up founded in 2021 out of the frustration that IT Security is highly fragmented and reactive.

Lansafe

Lansafe

Lansafe stands as a leading managed service provider in the UK, seamlessly integrating IT, Telecoms, Security, Electrical and Cyber Security solutions.

Argenta Talent Acquisition

Argenta Talent Acquisition

Argenta Talent Acquisition is a recruitment partner specializing in Space and Defense, Intelligence Community, all things Technical, Cyber, and Logistics.

WillCo Tech

WillCo Tech

WillCo Tech works to enhance national security and force readiness for military and commercial enterprises with a suite of software capabilities surrounding the human element of cybersecurity.