Maritime Cyber-Attacks and the IMO

8237756658?profile=RESIZE_400x“There is a strong need to balance the benefits of new technologies with safety and security concerns, in particular cyber-security," Heike Deggim, director of maritime safety at the United Nations sponsored International Maritime Organization (IMO), told the International Safety@Sea webinar series organized by the Maritime & Port Authority of Singapore (MPA).  “Many people tend to have a very outdated view of what modern shipping looks like.  Modern ships are technologically advanced workplaces and IMO plays an important part in shaping those developments.”  The transformation towards smart shipping means that technology permeates many aspects of ship operations.[1]

“Cyber technologies have become essential to the operation and management of numerous systems critical to the safety and security of shipping and protection of the marine environment, including bridge systems, cargo handling and managements systems, propulsion and machinery management systems, power control systems and administrative and crew welfare systems,” Deggim said.

One of the most critical developments in smart shipping and rapidly gaining importance is cyber security.  “Recognizing the use of electronic technologies is continually increasing in many areas of shipping.”

Shipping Cyber Attacks on the Rise: https://www.seatrade-maritime.com/technology/cyber-attacks-rise-shipping

With the process of digitalization accelerated by the Covid-19 pandemic, cyber-attacks have become more common not just in shipping, but globally in 2020.  The IMO itself was attacked with ransomware just a few months ago. 

During the webinar, Dekkim detailed how cyber risks will have to addressed in a vessel’s safety management system from the annual verification of its Document of Compliance from 1 January 2021 forward.  “Considering the human element aspect is vital in this regard, while systems can be protected and recovered by implementing different IT technologies it is important human understand the risks associated with the use and operation of critical systems,” she told the webinar.  “Thus, implementing good cyber discipline within an organization is critical in good cyber risk management as much in shipping as anywhere else.”

Related Article: Norwegians plan new scheme to cover cyber risk for the 2021.: https://www.seatrade-maritime.com/finance-insurance/norwegians-plan-new-scheme-cover-cyber-risk-new-year

As an example of pro-active implementation; the Norwegian mutual war risk insurer, Den Norske Krigsforsikring for Skib (DNK), and the Norwegian Shipowners’ Association (NSA) are establishing a new setup called Norma Cyber, which will cover cyber risk for DNK members from 1 January 2021.  In addition to providing insurance for members, Norma Cyber will also provide a database for members to exchange information and provide rapid preventive and supportive action in times of crisis and threat against Norwegian ships.[2]

In the US, the US Coast Guard issued NVIC 01-20, Guidelines for Addressing Cyber Risks at Marine Transportation Safety Act (MTSA) Regulated Facilities. This Navigation and Vessel Inspection Circular (NVIC) provides guidance to facility owners and operators in complying with the requirements to assess, document and address computer system and network vulnerabilities in facilities regulated under the MTSA of 2002. Facility owners and operators are required to address cybersecurity in their Facility Security Assessments (FSAs) and Facility Security Plans (FSPs) by September 30, 2021. The Coast Guard also is encouraging facility owners and operators to apply the NIST Framework for Improving Critical Infrastructure Cybersecurity and NIST Special Publication 800-82 to improve their facility’s security posture.[3]

Please feel free to contact our analyst team for research assistance and Cyber Threat Analysis on your organization.

Red Sky Alliance has been tracking cyber criminals for years.  Throughout our research we have painfully learned through our clients that the installation, updating and monitoring of firewalls, cyber security and proper employee training are keys to success, yet woefully not enough.  Our current tools provide a valuable look into the underground, where malware like all the different variants of Ransomware are bought and sold, and help support current protections with proactive underground indicators of compromise.  Please feel free to contact our analyst team for research assistance and Cyber Threat Analysis for your organization.

Red Sky Alliance has been has analyzing and documenting cyber threats and vulnerabilities for over 9 years and maintains a resource library of malware and cyber actor reports. Malware comes and goes, but often is dusted off and reappears in current campaigns.  

Red Sky Alliance is   a   Cyber   Threat   Analysis   and   Intelligence Service organization.  For questions, comments or assistance, please contact the lab directly at 1-844-492-7225, or feedback@wapacklabs.com  

Weekly Cyber Intelligence Briefings:
https://attendee.gotowebinar.com/register/8782169210544615949

 

[1] https://www.seatrade-maritime.com/technology/role-cyber-security-ship-safety-highlighted-imo

[2] https://www.seatrade-maritime.com/finance-insurance/norwegians-plan-new-scheme-cover-cyber-risk-new-year

[3] https://www.maritime-executive.com/editorials/navigating-cybersecurity-challenges-in-maritime-operational-technology

E-mail me when people leave their comments –

You need to be a member of Red Sky Alliance to add comments!