251/69 Friday, May 8, 2026
Taiwan’s high-speed rail system experienced a temporary service disruption after four trains received emergency alarm signals and were forced into emergency stop mode, causing operations to halt for nearly one hour and affecting a large number of passengers. Subsequent investigations revealed that the incident was caused by a 23-year-old university student who interfered with the railway communication system using commercially available radio equipment and software to spoof railway signals.
According to investigators, the suspect used Software-Defined Radio (SDR) techniques to analyze and decode parameters of the TETRA communication system used by the high-speed rail network. The extracted parameters were then configured into radio communication devices to impersonate legitimate railway system equipment. The attacker subsequently transmitted a “General Alarm” signal, which triggered the railway safety mechanism requiring trains within the affected area to immediately enter emergency stop mode. As a result, three trains stopped instantly while a fourth train was indirectly affected, leading to approximately 48 minutes of operational disruption.
The incident has raised serious concerns regarding the cybersecurity of critical infrastructure after reports indicated that the communication system had been using the same operational parameters for approximately 19 years without modification. Once the attacker successfully decoded the system, the information could reportedly be reused repeatedly without detection. Law enforcement officers raided the suspect’s residence and seized 11 radio communication devices, SDR equipment, and computers allegedly used in the attack. The suspect now faces multiple criminal charges and could face up to 10 years in prison. The case highlights the urgent need for continuous modernization, security assessments, and testing of critical infrastructure systems, particularly as increasingly powerful attacks can now be carried out using readily available hardware and open-source software.