Cyber-attacks have Now hit the World’s largest Shipping Companies.

All four of the world's largest shipping companies have now been hit by cyber-attacks

With today’s news that a ransomware attack has hit French shipping giant CMA CGM, this now means that all of the four biggest maritime shipping companies in the world have been hit by cyber-attacks in the past four years, since 2017.

- Advertisement -

Previous incidents included:

  1. APM-Maersk – taken down for weeks by the NotPetya ransomware/wiper in 2017.
  2. Mediterranean Shipping Company – hit in April 2020 by an unnamed malware strain that brought down its data center for days.
  3. COSCO – brought down for weeks by ransomware in July 2018.

On top of these, we also have CMA CGM, which today took down its worldwide shipping container booking system after the Ragnar Locker ransomware hit its Chinese branches in Shanghai, Shenzhen, and Guangzhou.

This marks for a unique case study, as there is no other industry sector where the Big Four have suffered major cyber-attacks one after the other like this.

But while all these incidents are different, they show a preferential targeting of the maritime shipping industry.

- Advertisement -

“I’m not so sure it’s that they’re any more or less vulnerable than other industries,” said Ken Munro, a security researcher at Pen Test Partners. This UK cyber-security company conducts penetration testing for the maritime sector.

“It’s that they are brutally exposed to the impact of ransomware.

“After the NotPetya crisper hit Maersk, I believe criminals realized the opportunity to bring a critical industry down, so payment of a ransom was perhaps more likely than other industries,” Munro said.

Cyber-attacks have Now hit the World's largest Shipping Companies.
Cyber-attacks have Now hit the World’s largest Shipping Companies.


Over the past year, incidents where malware landed on ships have intensified. This included sightings of ransomware, USB malware, and worms, all spotted aboard a ship’s IT systems.

Maritime industry groups have responded to these increasing malware reports aboard ships by publishing two sets of IT security guidelines to address naval security aboard ocean-bound vessels.

- Advertisement -

But Munro points out that it’s not the ships that are usually getting attacked in the major incidents.

Sure, malware may land on a ship’s internal IT network once in a while, but the incidents where malware gangs have done the most damage were the attacks that targeted shore-based systems that sit in offices, business offices, and data centers.

These systems manage personnel, receive emails, manage ships, and are used to book container transports. There is nothing significantly different from these systems than any other IT system sitting inside other industry verticals.

“That said, if you can’t book a container, there’s no point in having the ship,” Munro added.

It appears that despite efforts to protect ships from external hacking, the maritime industry has failed to treat its shore-based systems with the same level of attention.

While the rare ship hacking incidents are the ones that usually grab headlines, it’s the attacks on a shipping company’s shore-based systems that are more common these days, and especially the attacks on their container booking applications.

These systems have often been hacked by sea pirate groups looking for ship manifests, container ID numbers, and ship sea routes so they can organize attacks, board ships, and steal containers transporting high-value goods like electronics and jewelry.

These waves of “cyber pirates,” as these groups have been often named, along with the recent attacks on the Big Four shipping giants, are a clear sign that the shipping industry needs to stop prioritizing the less likely ship hacking scenarios and focus more on its shore-based systems, at least, for the time being.

Also Read:


Xiaomi India Black Friday sale

Xiaomi has announced that it will be holding a Black Friday sale in India, starting from November 26, which will go on till November...

Indian Government Bans 43 More Chinese Apps Including Ali Express

The Indian Government has today banned another 43 apps of Chinese origin under section 69A of the Information Technology Act. The news was released...

YouTube 8K Streaming Support Reportedly Rolling Out to Select Android TV Users

YouTube is reportedly rolling out 8K streaming support for select Android TV users as part of the company’s plans to possibly bring the feature to all users everywhere. According...

2FA bypass discovered in web hosting software cPanel

Security researchers have discovered a major security flaw in cPanel, a popular software suite used by web hosting companies to manage websites for their customers. The...

PUBG Mobile India was Recently Registered as a Company and Launch Soon

PUBG Mobile is one of the leading mobile battle royale titles. The game has amassed a massive fan base worldwide and holds a special place...

Leave A Reply

Please enter your comment!
Please enter your name here