January 4, 2022

Government Affairs Update

The California Legislature returned to Sacramento to commence work on the 2022 Legislative Session. This year is the second part of a two-year session, which means in addition to the various measures that will be introduced before the January 31 deadline, there are more than 1,000 Assembly and Senate bills eligible to be picked up and carried through the process.

This means CTA’s government affairs team will be busy at work tracking bills as they make their way through the Legislature, identifying priorities and communicate with members about important measures directly affecting the trucking industry.

We invite you to follow along by signing up to alerts from CTA’s Government Affairs Team by emailing Bernice Creager bcreager@caltrux.org.

Cybersecurity Advisory for Mitigating Log4Shell and Other Log4j-Releated Vulnerabilities

In response to the multiple vulnerabilities in Apache’s Log4j software, the Cyber Security Infrastructure and Infrastructure Security Agency (CISA), the FBI, and the National Security Agency (NSA) were joined by their cybersecurity authority counterparts from Australia, Canada, New Zealand, and the United Kingdom and released a joint cybersecurity advisory (CSA) on Mitigating Log4Shell and Other Log4j-Related Vulnerabilities.

This joint CSA provides various technical resources detailing voluntary steps that vendors and organizations with information technology, operational technology, and cloud assets should take to in response.

Additionally, the Transportation Security Administration, Surface Operations Cybersecurity Support Team has created the TSA Cyber Vulnerability Alert and Mitigation Response document to help the transportation community understand this threat and provide possible mitigation options.

Malicious cyber threat actors are actively scanning networks to potentially exploit Log4Shell software library: CVE-2021-44228 (known as "Log4Shell"), CVE-2021-45046, and CVE-2021-45105 in vulnerable systems.

For vendors and organizations with IT and/or cloud assets, this joint CSA expands on the previously published CISA guidance with recommended, detailed steps to respond to these vulnerabilities, which are:

Identify assets affected by Log4Shell and other Log4j-related vulnerabilities;

Upgrade Log4j assets and affected products to the latest version as soon as patches are available and remaining alert to vendor software updates; and

Initiate hunt and incident response procedures to detect possible Log4Shell exploitation.

Given the widespread exploitation of this vulnerability, organizations are encouraged to assume their assets that use Log4j may have been compromised and initiate hunt procedures. If a compromise is detected, organizations are encouraged to report it to CISA and/or the FBI.

CISA has provided a dedicated webpage with Log4j mitigation guidance and resources for network defenders, as well as a community-sourced GitHub (CISAgov) repository* of affected devices and services.

*Note: due to the urgency to share this information, CISA has not yet validated this content.

Regulatory Update: New Federal Entry Level Driver Training Requirements

The Federal Motor Carrier Safety Administration’s (FMCSA) new requirements for commercial driver license applicants go into effect next month on February 7, 2022.

The Entry Level Driver Training (ELDT) requirements will affect all individuals:

• Obtaining a Commercial Driver’s License (CDL)

• Upgrading an existing CDL

• Obtaining a School Bus, Passenger or Hazardous Materials Endorsement

ELDT must be conducted by a registered training provider listed on the federal Training Provider Registry (TPR). Training providers must register with the FMCSA in the TPR to be included on the public list of training providers. Training providers must also register to electronically submit a driver’s certification of successful completion of training, as required by the ELDT regulations.

In addition to the federal requirements, California residents applying for an original CDL (Class A or B) must complete a minimum of 15 hours of behind-the-wheel training and submit a California Commercial Driver Behind-The-Wheel Training Certification (DL 1236) to the Department of Motor Vehicles (DMV) as proof of completion prior to the issuance of their CDL.

CTA compiled a ELDT resource page for members to prepare for this rollout that takes effect February 7, 2022.

Group Asks for Personal Conveyance Limits

The Commercial Vehicle Safety Alliance has petitioned FMCSA for a second time to more clearly define the term “personal conveyance” in hours of service regulations. It is asking the agency to add a maximum distance or time limit to the rules.

Read more in this PrePass blog.

CTA Highlights

CTA Circle Club Executive Partner - SoCalGas

Southern California Gas Company Natural Gas Vehicles Program addresses the growing interest by SoCalGas customers in alternative transportation technologies by promoting the use of compressed natural gas (CNG) as an alternative vehicle fuel. CNG is one of the cleanest, least polluting fossil fuels. Use of natural gas vehicles can have a positive impact on air quality and greenhouse gases. CNG costs less at the pump than gasoline or diesel. It is domestically produced, and can help reduce our nation's reliance on imported oil and improve U.S. energy security.

To find out more, please call (213) 244-3720 or email us at NGVInfo@semprautilities.com

Friday, January 21, 2022
7:30-10pm

TOP GOLF
4627 Koval Lane
Las Vegas, NV 89109
(702) 963-0024

The Truckers United Fraternity Super Offspring of the Boss (TUFSOB) scholarship program provides financial support towards furthering the educational goals of trucking's next generation and the industry’s future leaders. Any allied/carrier members can nominate a student to receive scholarship awards through the TUFSOB program.