Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion
‎07-17-2025 06:18 PM
‎07-17-2025 06:18 PM

Train Brakes Can Be Hacked Over Radio—And the Industry Knew for 20 Years

Hi All

 

The US cybersecurity agency CISA has disclosed a vulnerability that can be exploited to manipulate or tamper with a train’s brakes. 

CISA last week published an advisory describing CVE-2025-1727, an issue affecting the remote linking protocol used by systems known as End-of-Train and Head-of-Train.

An End-of-Train (EoT) device, also known as a Flashing Rear End Device (FRED), is placed at the end of a train, being designed to transmit data to a device in the locomotive named the Head-of-Train (HoT). The system, introduced to replace the caboose, is used to obtain status data from the end of the train (particularly useful for long freight trains), but it can also receive commands to apply the brakes at the rear of the train.

The problem, according to CISA's advisory, is that the protocol remotely linking the EoT and HoT over radio signals is not secure (no authentication or encryption are used), enabling an attacker to use specially crafted packets transmitted with a software-defined radio to send commands to the EoT device.

 

Read more here:

 

https://www.securityweek.com/train-hack-gets-proper-attention-after-20-years-researcher/

 

Regards

 

Caute_Cautim

Reply
0 Kudos
0 Replies