Intruders attempt to psychologically manipulate employees and contractors to obtain confidential information.
Public transportation offices are witnessing a surge in social engineering cyberattacks, where intruders attempt to psychologically manipulate employees and contractors to gain confidential information. During a roundtable at the annual Transportation Research Board meeting on January 8, experts shared examples of these sophisticated attacks.
The Port Authority of New York and New Jersey has been particularly susceptible, with cybercriminals exploiting the “human fallibilities and vulnerabilities” of its employees, according to Josh DeFlorio, Chief of Resilience and Sustainability at the Port Authority.
In social engineering cyberattacks, digital criminals leverage their social skills to engage with specific organizational staff, aiming to obtain confidential information or access their computer systems. Jennifer DeBruhl from the Department of Rail and Public Transportation in Virginia recounted a successful attack that led to a statewide system outage lasting six months.
Cordell Schachter, Chief Information Officer of the United States Department of Transportation (USDOT), emphasized the importance of preventive measures, such as multi-factor authentication and system segmentation. He recommended a cybersecurity self-assessment and contacting the FBI or the Cybersecurity and Infrastructure Security Agency (CISA) in case of an attack. “Everyone should undergo a cybersecurity self-assessment to help us understand our current risks and report our plans to remedy them,” stated Schachter.
The US DOT combats these threats through monthly phishing tests for employees, reducing the click-through rate from 20% to 4%. Schachter underscored the immediate replacement of default passwords and basic cyber hygiene practices.
Effective strategies include flagging internal emails with red banners and integrating cybersecurity into the DOT’s strategic plan. Furthermore, the DOT collaborates with the Department of Homeland Security on risk management for the transportation systems sector to safeguard the national transportation network from cyberattacks. CISA provides online resources to counteract these threats.
Year after Yellow Corp.’s collapse: stagnation in trucking employment
The employment report shows a difference of 400 more jobs compared to last year The closure of Yellow Corp. in 2023 marked a milestone in
Essential 10-minute pre-trip truck inspection routine for road safety
Performing this check before starting your travels will not only ensure your safety, but will also allow you to comply with the regulations In a
California to receive $152 million for road safety improvements
51 projects in the state will benefit from this funding aiming to improve road safety The state of California will receive more than $152 million
Volvo Trucks sets new standards for heavy-duty electric transport
The new version of the FH Electric will benefit from a series of technological innovations Volvo Trucks has announced a significant improvement in the range
In brief: zero-emission truck weight limits, tax deduction and fuel prices
California sets zero-emission truck weight limits, congress seeks tax deduction restoration and fuel prices in the U.S. Weight limits for zero-emission trucks in California A
Rising temperatures and their impact on road transport costs
The time an engine spends idling is equivalent to the amount of fuel it consumes; the more idling, the higher the fuel expenditure The beginning
One Response