Shifting Tides in Maritime Cyber Attacks

12263661693?profile=RESIZE_400xIn a world driven by connectivity and digitalization, the maritime industry is not immune to the growing threat of cyberattacks.  A recent report by Thetius, law firm HFW, and maritime cybersecurity company CyberOwl reveals a sobering truth: the average cost of a cyberattack in the maritime sector has soared to $550,000, a threefold increase from $182,000 in 2022.  Moreover, ransom demands have skyrocketed by more than 350%, with an average payment of $3.2 million, up from $3.1 million the previous year.[1]

The report, titled “Shifting Tides, rising ransoms and critical decisions”, underscores the urgency of addressing cybersecurity challenges in the maritime industry.  With cybercrime poised to become a $10.5 trillion industry by 2025, it’s imperative for maritime organizations to fortify their defenses against cyber threats.  “The cost of cyberattacks is on the rise,” said the founder and managing director of Thetius.

The maritime industry’s vulnerability to cyberattacks is heightened by the proliferation of operational technology (OT) and Internet of Things (IoT) networks on merchant ships.  These digital systems create a fertile ground for generic and specific threats, including business interruption, financial exploitation, and damage to critical systems.  Yet, one of the most significant concerns is the operational disruption that a cyberattack can inflict.  The industry witnessed the global supply chain chaos resulting from the MV Ever Given’s grounding in early 2021, underscoring the potential magnitude of disruption driven by a cyber breach.  Recent research from DNV suggests that a cyberattack could even lead to the closure of major waterways, amplifying the risk.

Cybercriminals see the maritime sector as a alluring target, not only for the prospects of substantial ransom payments but also due to the escalating attention and sensitivities of charterers and port authorities to potential reputational damage. In response, maritime organizations can no longer afford to rely solely on basic cybersecurity measures; they must address the financial pressures involved in safeguarding their digital assets and networks.

Challenges in maritime cybersecurity - While there has been a noticeable increase in cyber awareness and maturity within the maritime community, the report highlights several challenges that remain.  The maritime industry is in a state of flux, with key roles and responsibilities shifting, new risks emerging, and crucial investment decisions looming.  These decisions are not solely about reducing quantifiable costs but also about mitigating the reputational damage that can follow a cyberattack.  “Our findings show that while maritime cyber security has improved, the industry remains an easy target,” said a partner at HFW.  “Shipping organizations are being subject to more cyberattacks than ever before, and the cost of attacks and demand for ransom payments have skyrocketed.  And as the use of technology continues to increase across all aspects of shipping – from ship networks to offshore installations and shoreside control centers – so does the potential for cybersecurity breaches.”

It’s crucial for maritime organizations to recognize the varying levels of risk and ensure that they are adequately resourced.  Securing vessel systems differs significantly from securing enterprise IT, necessitating distinct processes, skill sets, and technologies.  Building strong relationships with third parties, such as Original Equipment Manufacturers (OEMs), is essential for successful asset protection and surviving cyberattacks.

Cyber insurance also remains a challenge, with a significant proportion of industry professionals admitting their organizations lack adequate insurance coverage.  This lack of maturity in cyber risk management makes many companies ineligible for comprehensive insurance policies, leaving them exposed to significant financial losses.

Cyber guidance - The report offers six recommendations to enhance cybersecurity in the maritime industry.

 

  • First, recognize that key roles in the maritime sector are evolving due to increased connectivity and digitalization. Blending skills across all departments through cross-functional teams can help improve cyber risk management.
  • Second, make deliberate and comprehensive investment decisions for cybersecurity. A coherent security program, led by experts who understand the risks, is essential.  Avoid point-based solutions that may result in high costs and low effectiveness.
  • Third, when deploying advanced satellite communications systems like Low Earth Orbit (LEO) technology, account for additional cyber risks. Understand that LEO may increase cyber risks, necessitating greater protection.
  • Four, collaborate effectively with OEMs to ensure software meets industry standards and maintains security over time.
  • Five, ensure a clear understanding of your organization’s cyber insurance policies. Having insurance is a start, but knowing its extent and limits is crucial.
  • Finally, evaluate contracts to assign responsibility and risk related to cyber incidents. Consider including well-drafted cyber security clauses if the contract lacks relevant provisions.

 

There is less skepticism about the need to manage the risk, more thoughtfulness on how best to spend each dollar in shoring up defenses.”  However, the challenge for the change agents in shipping is that they are dealing with new risks in a new domain under sector-specific constraints, he added.  “All of this in an environment where shipping companies are still too secretive to share benchmarks and best practice widely.”

CyberOwl cautioned against a silo approach to cyber security, urging the sector to make the most of the specialist expertise available.  “What works in other sectors may not work in shipping.  And applying a generic approach could lead to expensive wastage.”

This article is presented at no charge for educational and informational purposes only.

Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization and has reported extensively on AI technology.  For questions, comments or assistance, please contact the office directly at 1-844-492-7225, or feedback@redskyalliance.com    

Weekly Cyber Intelligence Briefings:

Weekly Cyber Intelligence Briefings:

REDSHORTS - Weekly Cyber Intelligence Briefings

https://attendee.gotowebinar.com/register/5993554863383553632

[1] https://www.hellenicshippingnews.com/rising-threat-of-maritime-cyberattacks/

E-mail me when people leave their comments –

You need to be a member of Red Sky Alliance to add comments!