Top
image credit: Metropolitan Transportation Authority / Patrick Cashin

China-linked attackers breached Metropolitan Transportation Authority (MTA) using Pulse Secure zero-day

June 4, 2021

China-linked threat actors breached the network of the New York City’s Metropolitan Transportation Authority (MTA) network exploiting a Pulse Secure zero-day. The intrusion took place in April, but attackers did not cause any damage because they were not able to gain access to MTA train control systems. The Authority addressed the issue the day after Pulse Secure and US CISA issued an advisory in April to warn of the active exploitation of the flaw in the wild.

Read More on Security Affairs