Pittsburgh Regional Transit Hit by Ransomware Attack, Operations Briefly Disrupted
Pittsburgh Regional Transit (PRT) experienced a ransomware attack early Thursday morning, briefly disrupting light-rail operations and impacting customer service systems. The incident, initially perceived as a technical glitch, occurred around 4:30 a.m., affecting the rail control center's ability to track vehicles. Services were restored by 7 a.m., and most transit operations continue as normal. However, certain services, such as processing Senior and Kid’s ConnectCards, remain offline. PRT immediately activated its Cyber Incident Response Team, engaged third-party cybersecurity experts, and notified law enforcement to investigate potential data compromise.
While the scope and intent of the attack remain unclear, PRT has reassured riders that most transit services are unaffected and has not found evidence of personal data compromise so far. Investigators are working to determine whether attackers demanded a ransom and assess vulnerabilities exploited in the attack. PRT has emphasized its commitment to transparency while navigating the incident and plans to provide updates as the investigation progresses.