Deutsche Bahn Hit by Major DDoS Cyberattack Disrupting Rail Services
Germany’s national rail operator, Deutsche Bahn (DB), confirmed a large-scale cyberattack on its IT systems, causing significant disruptions to ticketing and travel information services. The attack, identified as a distributed denial-of-service (DDoS) assault, began around midday Tuesday and targeted DB’s digital infrastructure in waves, overwhelming systems with excessive traffic.
By Tuesday evening, the company reported that services had largely stabilized, though further outages occurred Wednesday morning, prompting DB to attribute the ongoing issues to the cyberattack. The operator implemented defensive measures to minimize customer impact, prioritizing the protection of customer data and system availability. DB declined to speculate on the attack’s origins, stating that its focus remained on restoring full functionality.
The incident follows a pattern of escalating threats to Germany’s transport infrastructure. Last year, DB faced near-daily cyberattacks, while physical sabotage including explosions in tunnels and severed electrical cables disrupted key rail lines between major cities. Authorities have raised concerns about Russia-linked hacking groups and mercenary operatives targeting critical infrastructure amid geopolitical tensions, though left-wing activists have also claimed responsibility for some attacks.
Germany’s Interior Ministry confirmed that DB had coordinated with national cybersecurity authorities in response to the incident. The attack underscores the vulnerability of essential services to digital and physical threats, with rail operators increasingly in the crosshairs of malicious actors.
Source: https://www.dw.com/en/deutsche-bahn-says-cyberattack-hit-ticket-and-info-systems/a-76024130
Deutsche Bahn TPRM report: https://www.rankiteo.com/company/deutschebahn
"id": "deu1771986734",
"linkid": "deutschebahn",
"type": "Cyber Attack",
"date": "2/2026",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Transportation',
'location': 'Germany',
'name': 'Deutsche Bahn (DB)',
'type': 'National rail operator'}],
'attack_vector': 'Distributed Denial-of-Service (DDoS)',
'date_detected': '2023-10-10T12:00:00Z',
'description': 'Germany’s national rail operator, Deutsche Bahn (DB), '
'confirmed a large-scale cyberattack on its IT systems, '
'causing significant disruptions to ticketing and travel '
'information services. The attack, identified as a distributed '
'denial-of-service (DDoS) assault, began around midday Tuesday '
'and targeted DB’s digital infrastructure in waves, '
'overwhelming systems with excessive traffic. By Tuesday '
'evening, services had largely stabilized, though further '
'outages occurred Wednesday morning, prompting DB to attribute '
'the ongoing issues to the cyberattack.',
'impact': {'operational_impact': 'Significant disruptions to rail services',
'systems_affected': ['ticketing services',
'travel information services']},
'investigation_status': 'Ongoing',
'motivation': ['Geopolitical tensions', 'Sabotage'],
'references': [{'source': 'Cyber incident description'}],
'regulatory_compliance': {'regulatory_notifications': 'Coordinated with '
'national cybersecurity '
'authorities'},
'response': {'containment_measures': 'Implemented defensive measures to '
'minimize customer impact',
'incident_response_plan_activated': True,
'recovery_measures': 'Prioritized protection of customer data '
'and system availability'},
'threat_actor': ['Russia-linked hacking groups', 'left-wing activists'],
'title': 'Deutsche Bahn Hit by Major DDoS Cyberattack Disrupting Rail '
'Services',
'type': 'DDoS'}