Maryland Transit Administration confirms cybersecurity incident resulted in data loss

Listen to this article

The Maryland Transit Administration recently confirmed that a cyberattack has resulted in “incident-related data loss,” according to an MTA release.

State officials are advising MTA users to take precautionary actions such as updating passwords.

“At this time we are unable to disclose specific or additional details regarding what data has been lost because of the sensitivity of the ongoing investigation,” MTA spokesperson Veronica Battisti said in a Sept. 25 emailed answer provided through its press office.

“If it is found that personal information has been taken, the affected individuals will be notified by the State in accordance with State law and we will take appropriate actions and provide guidance on recommended actions,” Battisti said.

“The Maryland Department of Information Technology is working diligently with third-party cyber experts to investigate the cause of the cyber incident. Our efforts are focused on restoring all affected services as quickly and securely as possible while ensuring the integrity and protection of all data. As this is an ongoing investigation, we are not able to provide any further details at this time,” she said.

A Sept. 22 MTA update states that core services, including the MARC Train, are operating normally. MARC has a Brunswick-Washington line that goes from Martinsburg, West Virginia, to Washington, D.C.

Asked if the MTA cyberattack has affected Washington County transit operations, county spokesperson Danielle Weaver, in an email, said “We have not been directly affected by the cyber-attack, though some delays have occurred due to limited access to certain MTA systems.”

What actions Maryland state officials recommend transit customers take due to cyberattack

“The Maryland Department of Information Technology is advising MTA system users and MDOT State employees” to take several precautionary actions to help mitigate possible effects from the cyberattack, the release states.

The recommended actions are to:

• Update passwords. Use unique, complex passwords for all personal and work accounts to improve online security. Password managers can make it easier to manage long, complex passwords.
• Enable multi-factor authentication. This adds a layer of security because multiple forms of verification are then needed to access an account. Using multi-factor authentication can “greatly reduce the risk of unauthorized access to accounts,” the release states.
• Update software on all devices. Regularly update software to ensure devices have the latest security features and patches.
• Recognize phishing. Phishing uses deceptive emails, texts or websites to trick people into revealing sensitive information such as passwords, personal data and financial information. The attempts try to look like they came from official organizations. They might ask users to click on a link. State officials urge people to exercise caution and not enter personal data or click suspicious links. Verify a sender’s email before taking action.

According to America’s Cyber Defense Agency, over 90% of successful cyberattacks begin with a phishing email.

MTA users with questions or concerns may contact the call center at 1-800-332-6347.

Reported info about Maryland Transit cyberattack

The Baltimore Sun reported on Aug. 31 that the transit administration had “started taking calls to reserve mobility rides via its MobilityLink” due to a cyberattack affecting the paratransit reservation system.

The Sun, in a Facebook post, reported the cyberattack also targeted MTA information systems, affecting arrival/departure estimates.

On Sept. 22, the Maryland Transit Administration issued an update on the cybersecurity incident, noting that the investigation had confirmed “incident-related data loss.”

The state update says mobility paratransit services are operating and that as of Aug. 29, MTA was partnering with MV Transportation to provide customer service and scheduling support through an interim call system. Those riders can schedule, confirm or adjust trips by calling the MTA mobility reservation at 410-764-8181 from 8 a.m. to 5 p.m. MTA also has partnered with Hart to Heart for transportation services for Mobility riders who use devices like a wheelchair and have time-sensitive medical appointments.

The update states that core services, including Local Bus, Metro Subway, Light Rail-MARC Train, Commuter Bus and Mobility Call-A-Ride are operating normally.

This article originally appeared on The Herald-Mail: Maryland Transit Administration confirms cybersecurity incident resulted in data loss

Reporting by Julie E. Greene, The Herald-Mail / The Herald-Mail

USA TODAY Network via Reuters Connect