Wabtec Corp., one of largest freight and transit rail equipment and services providers, disclosed Friday it was the target of a cyberattack discovered in June 2022. The threat actor later posted sensitive data on an online leak site. The Pittsburgh-based company discovered the attack on June 26 and following an internal investigation realized malware was introduced as early as March 15, 2022. The attack impacted the firm’s U.S., U.K. and Brazilian rail operations. The threat actor, which was not disclosed, accessed sensitive parts of the Wabtec environment, stole data and later posted onto an online leak site, according to the company. The company said it contacted the FBI soon after discovering the attack. By Nov. 23, the company aided by outside data specialists, realized personally identifiable data was taken and the company began formal notifications by letter on Dec.30.