Los Angeles Metro restricted access to its internal IT systems after detecting unauthorized activity, disrupting some passenger information services and TAP card reload options. While trains and buses continued to operate normally, riders were advised to use physical TAP kiosks while the agency investigates; ransomware.live listed Los Angeles as a target of the group βWorldleaksβ on 2026-03-20. #LosAngelesMetro #Worldleaks #TAP
Information
- Victim: Los Angeles Metro
- Website: metro.net
- Country: United States
- Date Reported: 2026-03-20
Keypoints
- Los Angeles Metro restricted internal system access after detecting unauthorized activity.
- Passenger information services and TAP card reload options were disrupted.
- Trains and buses continued to operate normally despite the disruption.
- Riders were advised to reload TAP cards at physical kiosks while the issue is resolved.
- No organization has claimed responsibility for the incident.
- The site ransomware.live listed Los Angeles as a target of the group βWorldleaksβ on March 20, 2026.
- The agency is investigating the incident and working to restore full system access.
Read More: https://dysruptionhub.com/la-metro-unauthorized-activity-california/