The maritime sector is facing growing cybersecurity challenges amid geopolitical tensions. Cyberattacks have made the shipping sector more vulnerable, affecting not just ports but also shipbuilders, IT providers, and vendors.
Researchers from the Netherlands’ NHL Stenden University of Applied Sciences reviewed industry, media, and academic data and found that at least sixty-four cyberattacks affected shipowners, ports, and other marine groups in 2023.
Stronger security measures are required, as revealed by five significant marine cybersecurity incidents since 2022. Despite having no appreciable fiscal impact, SembcorpMarine had a problem with unauthorised access through third-party software, exposing vulnerabilities.
A hack that brought down all of Voyager Worldwide’s systems and expanded via IT service providers affected more than 25% of shipping businesses. Data from four shipping companies and a Marine IT company was leaked on the dark web by the “PLAY” ransomware organisation in December 2022.
Following a cyberattack on December 25, 2022, the Port of Lisbon had four days of disruption, with the Lock Bit group demanding a $1.5 million ransom. Ransomware attack on seventy clients of the Norwegian company DNV impacted over 15% of its fleet. These incidents highlight the pressing need for improved maritime cybersecurity.
According to Guy Platten, secretary-general of the International Chamber of Shipping, which represents shipowners who own around 80% of the world’s business fleet, the rules-based international order that has been in place since the Second World War is under a major risk.
Recent state-sponsored attacks have shown how wars in Ukraine and the Middle East have affected globalization. These wars have produced huge disruptions in the maritime business, which transports more than 80% of worldwide trade.
The shipping sector, which has always faced physical security challenges, is now unprepared for the digital realm, according to experts in the field.
Professor of marine IT security at NHL Stenden, Stephen McCombie, said that “IT spend in the maritime sector is pretty low.” Shipowners are looking for someone who has cybersecurity and maritime experience, which is a distinctive mix.
Experts warn that an attack might cause even more insecurity, particularly at a time when shipowners are already dealing with the impact of international conflicts on shipping lanes.
According to Tom Walters, an HFW shipping lawyer, there are higher chances of cyberattacks due to the growing digitisation of ships and the extensive usage of internet devices at sea, which is made possible by low Earth orbit satellites.
Walters warned that a system attack on a ship might result in serious interruptions. He linked it to the Baltimore bridge incident this year. The incident shut down one of the US’s biggest ports, prompted automobile manufacturers to reroute cargo, and resulted in multibillion-dollar insurance claims.
The increase in cyberattacks on ship software update systems is causing significant concern among shipping businesses. To protect these essential infrastructure boats, modern security measures must be adopted.
Protecting your data and having a plan in place are important for mitigating a cyberattack. Strong security measures, like dividing your network into smaller segments, can help prevent attacks and limit the damage if one happens. To maintain business continuity during an attack and help in your recovery, it is important that you have a backup strategy in place.
Has your organisation started to increase cyber security measures yet? Start your two-week free trial today.