CRRC MA America, the U.S. subsidiary of the world’s largest rolling stock manufacturer, has allegedly been compromised, resulting in the exfiltration of 238 GB of sensitive engineering and infrastructure data. A threat actor claims to have accessed engineering servers in the Los Angeles and Springfield offices, seizing a “100% complete” archive of confidential documents. The leak allegedly impacts major transit projects, including systems for the Los Angeles Metro and the Massachusetts Bay Transportation Authority (MBTA), with the actor attempting to sell the data for a substantial sum.
According to the actor, the compromised data contains highly sensitive technical specifications and allegedly suppressed reports. The stolen information includes:
-
Los Angeles Union Station: Full signaling drawings, vital relay logic, rail circuit boundaries, and precise GPS coordinates of control rooms and emergency shutdown stations (marked as Sensitive Security Information).
-
LA Metro HR4000 Project: Complete door system packages, HVAC proposals, and 2024–2025 daily Witness Test reports.
-
Controversial Reports: Documents allegedly proving the intentional deletion or suppression of 28 critical test reports regarding doors, HVAC, and propulsion systems.
-
Boston Metro (MBTA): Complete packages for the Red & Orange Lines, including vehicle history books and factory acceptance reports.
-
Technical Design: Full carbody 2D/3D drawings, stress analysis reports, electrical schematics, and welding certificates.
-
Software & Firmware: TCMS network architecture and complete software/firmware lists.
