OTSI A.I CyberSecurity Scoring
OTSI
Company Information
Website:http://www.thebus.org
Employees number:395
Number of followers:754
NAICS:
Industry Type:Transportation/Trucking/Railroad
Homepage:thebus.org
OTSI Risk Score (AI oriented)
Between 700 and 749
OTSITransportation/Trucking/Railroad
Updated:
07/04/2026
07/04/2026
745/1000
Moderate
Ba
OTSI Global Score (TPRM)
xxxx
OTSITransportation/Trucking/Railroad
Score locked

OTSIModerate
Current Score
745Ba (MODERATE)
01000
2 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
747
JUNE 2026
746
MAY 2026
746
APRIL 2026
745
MARCH 2026
745
FEBRUARY 2026
745
JANUARY 2026
745
DECEMBER 2025
744
NOVEMBER 2025
744
OCTOBER 2025
743
SEPTEMBER 2025
743
AUGUST 2025
742
FEBRUARY 2024
750
Cyber Attack
21 Feb 2024 • OTSI
Pittsburgh Regional Transit, Oahu Transit Services, Kansas City Transportation Authority and Change Healthcare: How Cyberattacks on Essential Services Hit Women Harder
Cyberattacks on Critical Infrastructure Disproportionately Impact Women, Yet Policy Remains Gender-Blind
731
CRITICAL-19
CHAOAHARKUNV1775594838
Cyberattacks on Critical Infrastructure Disproportionately Impact Women, Yet Policy Remains Gender-Blind
Cyberattacks on essential services healthcare, education, and transportation are increasing in frequency and severity, with consequences that extend far beyond technical disruptions. While these incidents are often framed as neutral operational failures, their impacts are deeply gendered, disproportionately burdening women due to their structural roles in both the formal workforce and unpaid care labor. Despite this, U.S. cybersecurity policy continues to treat these effects as evenly distributed, undermining resilience and risk assessment.
### Healthcare: Frontline Workers Bear the Brunt
Women make up 80% of the U.S. healthcare workforce, particularly in nursing and frontline care roles. When ransomware attacks such as the 2024 Change Healthcare breach, the largest in U.S. history disrupt digital systems, women absorb the immediate operational strain. Nurses must manually transcribe records, manage patient care without electronic alerts, and navigate heightened safety risks from delayed diagnostics. These disruptions also worsen maternal health outcomes, with outages increasing risks like delayed obstetric care and elevated maternal mortality, yet these consequences remain unmeasured in incident reports.
Beyond clinical settings, cyber-induced healthcare failures shift caregiving responsibilities back to households, where women perform the majority of unpaid labor. The lack of gender-disaggregated data obscures these compounding burdens, leaving policymakers with an incomplete understanding of systemic harm.
### Education: Teachers and Caregivers Face Cascading Disruptions
The education sector has become a prime target for ransomware, with over 80% of U.S. K-12 schools experiencing cyber incidents between mid-2023 and late 2024. Women comprise 77% of K-12 educators and nearly 90% of elementary school teachers, meaning they bear the brunt of operational fallout managing disrupted curricula, reconstructing lost data, and addressing student anxiety during outages.
School closures further exacerbate gendered disparities, as women disproportionately absorb childcare responsibilities, leading to lost work time, reduced income, and increased stress. Despite these patterns, cybersecurity incident reports rarely document gendered workforce impacts or caregiving burdens, and the education sector remains undervalued in federal critical infrastructure definitions, reflecting a broader blind spot in resilience planning.
### Transportation: Mobility Disruptions Hit Women Hardest
Cyberattacks on transit systems such as those affecting Pittsburgh Regional Transit, Kansas City Transportation Authority, and Oahu Transit Services disrupt payment systems and service availability. Women, who constitute the majority of public transit users, rely on these systems for caregiving, household management, and service-sector employment. Outages limit access to medical care, workplaces, and essential services, yet transportation cyber incident analyses rarely include gender-based assessments, leaving compounded burdens unaddressed.
### Interconnected Systems: The Invisible Labor of Recovery
Critical infrastructure sectors are deeply interdependent, and disruptions in one area such as healthcare cascade into others, intensifying caregiving demands at home. When schools close, childcare responsibilities shift to families; when transit fails, access to essential services diminishes. Each of these burdens falls disproportionately on women, yet cybersecurity policy frameworks focus on technical interdependencies rather than social ones, failing to account for the gendered distribution of labor that underpins recovery.
### Why Gender-Blind Cybersecurity Undermines National Security
The assumption that cyberattacks affect all demographics equally is not just inaccurate it weakens resilience. Women’s paid and unpaid labor acts as a buffer during crises, yet this labor remains invisible in incident reporting and unaccounted for in policy. Without gender-disaggregated data, risk assessments are incomplete, response efforts underestimate consequences, and recovery strategies fail to address the populations most affected.
### The Path Forward: Secure-by-Design and Gender-Intentional Policy
Many cyber incidents stem from preventable software vulnerabilities, yet manufacturers face little accountability for insecure products. Addressing these root causes through secure-by-design standards, regulatory reforms, and liability frameworks would reduce harm, particularly for women, who disproportionately rely on public services.
A gender-intentional cybersecurity framework would:
1. Center real users in threat modeling, accounting for how women engage with technology in work, caregiving, and transit.
2. Measure gender-disaggregated impacts to improve risk assessment and resilience planning.
3. Adopt human-centered security, designing policies that reflect actual user behavior rather than idealized assumptions.
Efforts like Critical Cyber and the Foundation Layer initiative are mapping real-world consequences of cyberattacks, emphasizing that digital resilience depends on the stability of the communities interacting with these systems. Without integrating gender analysis, cybersecurity strategies will continue to fail in practice leaving the most vulnerable populations to bear the costs of systemic failure.
INCIDENT DETAILS -
TYPE
IMPACT
REFERENCES
DECEMBER 2021
759
Cyber Attack
01 Dec 2021 • OTSI
Oahu Transit Services Inc
Cyberattack on Oahu's Bus System
740
CRITICAL-19
OAH1920161122
According to Roger Morton, head of the Department of Transportation Services, the cyberattack on Oahu's bus system has the trappings, which caused a “mass disabling of online servers” for TheBus and TheHandi-Van systems.
The shutdown has affected all OTS networks and also affected was the Bus Pass Office at the Kalihi Transit Center.
According to the DTS, the HOLO card's online services and call centers are momentarily unavailable, and some retail locations that distribute HOLO cards won't be able to access HOLO card accounts, distribute, or load/reload cards.
They worked with the FBI, the Secret Service, and the Honolulu police and took steps to safeguard HOLO Card users’ personal and financial information.
INCIDENT DETAILS -
TYPE
IMPACT
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for OTSI ??
What was OTSI's A.I Rankiteo Cyber Score in June 2026 ??
What was OTSI's A.I Rankiteo Cyber Score in May 2026 ??
What was OTSI's A.I Rankiteo Cyber Score in April 2026 ??
What was OTSI's A.I Rankiteo Cyber Score in March 2026 ??
What was OTSI's A.I Rankiteo Cyber Score in February 2026 ??
What was OTSI's A.I Rankiteo Cyber Score in January 2026 ??
What was OTSI's A.I Rankiteo Cyber Score in December 2025 ??
What was OTSI's A.I Rankiteo Cyber Score in November 2025 ??
What was OTSI's A.I Rankiteo Cyber Score in October 2025 ??
What was OTSI's A.I Rankiteo Cyber Score in September 2025 ??
What was OTSI's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on OTSI's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with OTSI ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view OTSI's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?