Romania's Railway Reform Authority has awarded Siemens Mobility a contract for 12 hydrogen-powered trains based on the Mireo Plus H platform, marking Romania's first hydrogen train contract. The trains will be delivered by 2029 with 15 years of maintenance services included, featuring hydrogen fuel cells with battery storage and capacity for 136 passengers per two-car unit at maximum speeds of 120 km/h.
Original (en)
Romania’s Railway Reform Authority (ARF) has awarded Siemens Mobility a contract for the delivery of 12 two-car hydrogen-powered electric multiple units based on the Mireo Plus H platform. This marks the first hydrogen train contract in Romania and one of the first hydrogen projects in Eastern Europe, the company said. The agreement includes the delivery of the trains as well as full maintenance and repair services for an initial term of 15 years. The trains are due for passenger service in 2029. The Mireo Plus H features a hydrogen fuel cell-based electric propulsion system, complemented by battery energy storage. The batteries are charged either via the fuel cell system or through regenerative braking. The trains are configured as articulated two-unit trainsets with a maximum operating speed of 120 km/h. Each trainset offers 131 fixed seats plus five folding seats. The trains can be operated in multiple traction of up to two coupled units. The maintenance activities will be carried out locally in Romania, including at a dedicated depot in Bucharest, by Siemens Mobility personnel, supported by Railigent X digital maintenance and fleet management systems. By replacing diesel-powered rolling stock, the new hydrogen trains will contribute to a significant reduction of emissions and noise in regional rail transport, the company said. “With the Mireo Plus H, we combine a proven regional train platform with state‑of‑the‑art hydrogen technology, enabling zero‑emission rail operations on non‑electrified lines,” Andre Rodenbeck, CEO Rolling Stock at Siemens Mobility, explained. simona@romania-insider.com (Photo source: Siemens Mobility)
Published
Apr 29, 2026, 11:41 AM UTC
14d ago
Significance
Entities Detected
· click + to trackGoogle Threat Intelligence reports a sophisticated supply chain attack on axios NPM package versions 1.14.1 and 0.30.4 (March 31, 2026), where attackers injected malicious 'plain-crypto-js' dependency to deploy WAVESHAPER.V2 backdoor across Windows, macOS, and Linux platforms. Attribution to UNC1069 based on malware signatures, infrastructure overlaps, and operational patterns. Remediation guidance includes version pinning, dependency auditing, CI/CD pipeline security, and credential rotation.
A critical remote code execution vulnerability (CVE-2026-1731) has been identified in remote monitoring and management software that could be exploited to deploy ransomware and compromise supply chain integrity. The flaw enables attackers to execute arbitrary code, creating significant risk for downstream organizations and critical infrastructure.
Bitwarden CLI, the command-line interface for the password manager Bitwarden, has been compromised as part of a newly discovered Checkmarx supply chain campaign. The affected package version is @bitwarden/cli@2026.4.0, with malicious code published in 'bw1.js,' according to findings from JFrog and Socket.
31cc8b83…openwatch.io →