For most of its history, rail has been a sector very much closed to new technology. However nowadays the modern railway is a modern interoperable system in which technology is a constant factor. Railway infrastructure being primarily based on a computer network of course opens up vulnerabilities toward cyber criminals and attacks that affect many people are very possible. Current safety requirements such as EN 50126, EN 50128 or EN50129 do not secure the entire railway system. The new Directive should be implemented by EU countries by November 2024, allowing them to adapt to new technologies and improve cyber security requirements.