The Siren Alert!!

French shipping giant CMA CGM was the last big name to be added to the list of maritime companies that suffered a cyberattack when it was hit by a ransomware attack a couple of weeks ago. With giants like APM-Maersk, COSCO, and Mediterranean Shipping Company being other names on the list, the importance of cybersecurity in the maritime industry must be contemplated in the most serious sense. While APM-Maersk was attacked by a NotPetya ransomware/wiper leaving it non-operational for weeks in 2017, the attack on Mediterranean Shipping Company was aimed solely aimed at its data center which was hit by an unnamed malware strain brought down for days in April 2020. Similarly, COSCO was attacked and brought down for weeks by ransomware in July 2018.

On a more recent note, shipping giant CMA CGM decided to take down its worldwide shipping container booking system following a similar unprecedented Ragnar Locker Ransomware attack on their Chinese branches in Shanghai, Shenzhen, and Guangzhou. As such major names have become prey to the wave of such horrific cyberattacks, it is only logical to notice the pattern is drawn in such an unrelated set of attacks. Different locations, different attacks but all fingers towards the fact that the maritime shipping industry is no less prone to such attacks.

As if the attacks on shipping companies weren’t terrifying enough, the fact that similar attacks were launched against the International Maritime Organization, the United Nations arm that regulates global shipping, only adds to the tension. The organization’s London headquarters was forced to bring down its website and internal web-based services as cyberattacks took their toll on the body earlier in October. The attack was another add-on to the list of technological network breaches that have taken place in recent years involving the best fright operators.

As the world grows smaller and the digital arena becoming bigger than ever, the incidents of malware landings have intensified multiple times in recent years. A continual string of spotting worms, USB malware, and ransomware aboard a ship’s IT systems have become a threat like no other. Publishing two new sets of IT security guidelines addressing the maritime security aboard ocean-bound vessels is a step taken in the right direction, however, the need for ensuring cybersecurity on ships as well as any related fields, offices, or even personal computers of operators is to be taken up with utmost importance.

While malware attacks on vessels have become common, even more damage is being inflicted by attacks targeting shore-based systems. Shipping offices, company systems, and data centers are most valuable, thus more vulnerable. From the management of personnel, emails, and evening booking container transports, these are the systems that sustain the company. As it is clear as daylight that these systems differ no less than any other IT system in the world, these must be secured with equal attention like how any other valuables are protected.

As hijacking or eventual ship hacking cases are first to lead the headlines of any news media, the attacks of shore-based systems are often dipped where it mustn’t be the case. An attacking group can obtain ship manifests, container ID numbers, and ship sea routes, and more details on operations using these systems so as to organize a perfect attack or even hijack of the vessel. These are chances often neglected but in fact possible if cybersecurity is not ensured. With such kinds of attacks on shore-based systems becoming a recurring situation, it is time to focus all the more on cybersecurity than any other mode of protection.