The Maryland Transit Administration (MTA) reported Monday that a cybersecurity incident has disrupted its Mobility paratransit scheduling and real-time tracking systems. While the agency emphasized that core transit services remain unaffected, the disruption has left some riders with limited options for booking new trips.
The MTA said its cybersecurity teams acted quickly upon detection. “Our teams immediately took actions to investigate the nature and scope of the incident, to contain the threat and to secure our systems,” the agency stated. Officials confirmed that outside cybersecurity experts and law enforcement are assisting with the investigation.
Core Transit Services Remain Stable
Despite the attack, The Maryland Transit Administration’s primary operations — Local Bus, Metro Subway, Light Rail, MARC train, Commuter Bus, and Call-A-Ride — are running normally. The primary disruption is limited to Mobility, the paratransit service used by riders with disabilities.
New bookings and rebookings on Mobility are currently unavailable, though the MTA stressed that all previously scheduled trips this week will be honored. To help cover urgent needs, the agency advised riders facing medical appointments or emergencies to contact their providers directly or call 911. Eligible riders may also use Call-A-Ride by phoning 410-664-2030.
Broader Operational Impact
Alongside the paratransit disruption, certain Maryland Transit Administration Cybersecurity Incident Disrupts Paratransit Scheduling support systems have also been affected. Real-time information tools and call centers are currently experiencing outages, making it harder for riders to track buses and trains or access live customer service.
To strengthen coordination, the Maryland Department of Emergency Management activated the Statewide Emergency Operations Center, bringing together the MTA, the Maryland Department of Information Technology, and other agencies. Officials said this ensures resources and expertise are shared in the ongoing response.
Rising Cybersecurity Threats in Transit
While the MTA has not disclosed the nature of the attack, cybersecurity experts note that transit systems are increasingly targeted by cybercriminals. Many agencies depend on real-time scheduling and communication systems that, if disrupted, can directly affect riders’ mobility and accessibility.
Similar incidents across the U.S. have highlighted vulnerabilities in public transportation networks, especially in services like paratransit that rely heavily on digital scheduling platforms. The MTA emphasized that its priority is to restore safe, reliable service while also strengthening defenses to reduce the risk of future attacks.
Support for Riders and Next Steps
The MTA said updates will be provided as the investigation progresses and systems are restored. In the meantime, officials urged riders to confirm scheduled trips ahead of time, use Call-A-Ride if eligible, and plan for potential delays in receiving real-time information.
The agency reiterated that its essential transit operations remain fully functional, minimizing disruptions for the majority of Maryland commuters. However, for riders who rely on Mobility, the disruption underscores the critical role cybersecurity plays in ensuring transportation access.
As the investigation continues, the MTA’s collaboration with state agencies, cybersecurity experts, and law enforcement is expected to guide both the immediate recovery effort and long-term resilience planning.
Also Read: Cohesity Catalyst 1 Highlights AI-Driven Future of Cyber Resilience
