Ukraine has only restored half of railway services following cyber attack

Ukraine’s state train service Ukrzaliznytsia has announced that the restoration of its services following a cyber attack last month are only 50 per cent complete.

The train network suffered a cyber attack on March 23 that led to its online systems, including the service for ticket sales, going offline.

“Ukrzaliznytsia’s online systems have been subjected to a large-scale targeted cyber attack. The restoration of all systems lasted all day and continues now,” said Ukrzaliznytsia in a statement on Telegram at the time.

You’re out of free articles for this month

Username or Email

Password Forgot password?

Keep me signed in on this device.

First Name

Last Name

Mobile

Organisation Type

By becoming a member, I agree to receive information and promotional messages from Cyber Daily. I can opt out of these communications at any time. For more information, please visit our Privacy Statement.

Need help signing up? Visit the Help Centre.

“Ukrzaliznytsia specialists are closely cooperating with the cyber department of the Security Service of Ukraine.”

The cyber attack was believed to have been from Russian threat actors. Despite Ukrzaliznytsia at the time saying that “the enemy failed to do the key thing” referring to dismantling the nations train network, deputy head of the train networks commercial department Valeriy Tkachev says that systems will not be restored for at least “one or two weeks.”

The ticket sale systems have reportedly been restored, according to Ukrzaliznytsia last month.

Cyber attacks on Ukrainian infrastructure are largely attributed to Russia, which has also targeted Ukrzaliznytsia in the past with missiles and drones as part of the ongoing conflict between the two countries.

VIEW ALL

When the war began following Russia’s “special military operation” and planes became grounded, Ukrzaliznytsia served as a critical and necessary service for millions of Ukrainian citizens, allowing them to travel both domestically and internationally.

It has also been used to deliver humanitarian aid and medical supplies and evacuate injured soldiers and civilians. It is critical for its use in the nation’s trade with other European nations.

Russia’s train network also suffered a cyber attack in what was believed to be a retaliatory act around a week later.

In a statement on 31 March 2025, the Russian Centre for Monitoring and Control of the Public Communication Network (CMU SSOP) said it had received a large number of reports of issues with its application and website.

“On March 31, starting at 06:00, the Public Communication Network Monitoring and Control Center (PCNCNC) recorded a surge in requests about problems with the Moscow Metro application,” said CMU SSOP.

“As of 12:00, the problem with the application’s availability persists. Specialists are working to resolve the issue.”

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

You need to be a member to post comments. Become a member for free today!

newsletter

Be the first to hear the latest developments in the cyber industry.

Ukraine has only restored half of railway services following cyber attack

Daniel Croft

OUR PLATFORMS AND BRANDS

EVENTS AND SUMMITS

PODCASTS

LEARNING AND EDUCATION

MOMENTUM MARKETS NETWORK

LINKS

STAY CONNECTED