CISA: US train braking system flaw threatens derailment

Cybersecurity Expert: American Trains Are Vulnerable to Remote Hacking

A longstanding vulnerability in the U.S. rail system could allow hackers to remotely trigger train brakes, according to a cybersecurity researcher and government officials. The post Cybersecurity Expert: American Trains Are Vulnerable to Remote Hacking appeared first on Breitbart.

This Week In Security: Trains, Fake Homebrew, And AI Auto-Hacking

There’s a train vulnerability making the rounds this week. The research comes from [midwestneil], who first discovered an issue way back in 2012, and tried to raise the alarm. Turns out you can just hack any train in the USA and take control over the brakes. This is CVE-2025-1727 and it took me 12 years to get this published. This vulnerability is still not patched. Here's the story: https://t.co/MKRFSOa3XY — neils (@midwestneil) July 11, 2025 …

Cybersecurity & Infrastructure Security Agency issues warning about end-of-train device vulnerability | Brotherhood of Locomotive Engineers and Trainmen

(Source: Railway Track & Structures, July 16, 2025) The federal Cybersecurity & Infrastructure Security Agency has warned that end-of-train devices (EOTs) are vulnerable to cyber breaches that could affect the train’s brake control system. The federal government cybersecurity agency has issued a warning that the EOT could be vulnerable to computer hackers, especially those seeking to take control of the train’s air brake system. The report says …

Hacking Trains - Schneier on Security

Seems like an old system system that predates any care about security: The flaw has to do with the protocol used in a train system known as the End-of-Train and Head-of-Train. A Flashing Rear End Device (FRED), also known as an End-of-Train (EOT) device, is attached to the back of a train and sends data via radio signals to a corresponding device in the locomotive called the Head-of-Train (HOT). Commands can also be sent to the FRED to apply the…