Another shipping company was attacked by a cyber. The French CMA CGM suffered a ransomware attack, which means that now the four largest shipping companies Companies in the world have accepted attack in cyberspace for the last four years.
Previous attacks on shipping companies
- APM-Maersk: "Hit" by NotPetya ransomware / wiper in 2017 resulting in the suspension of its services for weeks.
- COSCO: It was attacked by ransomware in July 2018 and stopped operating for weeks.
- Mediterranean Shipping Company: It fell victim to a cyber attack in April 2020. The malware used in attack It is not known, but it affected the company's data center for days.
Now, the French CMA CGM is also on the list of victims, after its Chinese branches in Shanghai, Shenzhen and Guangzhou were "hit" by Ragnar Locker ransomware, resulting in the shutdown of some systems of the company.
This latest attack is not just another ransomware attack. It shows something more. Nothing similar has happened in any other industrial sector. Now, the Big Four of the shipping sector (the four largest shipping companies) have accepted attacks, one after another.
As it turns out, cybercriminals show a preference for the shipping industry.
"I'm not sure he's more or less vulnerable than other industriesSaid Ken Munro, its security researcher Pen Test Partners (British security company conducting penetration testing for the shipping industry). "It is that the industry is vulnerable to the impact of ransomware. From the moment Maersk was hit by NotPetya, I believe criminals realized the importance of stopping services a critical industry, so paying the ransom is probably more likely than other industries", Said Munro.
Ships are not as endangered as land-based systems
During the last year, the malware Attacks on ships had increased significantly. Ransomware, USB malware and worms were detected in the IT systems of many ships.
Shipping companies have tried to tackle these growing malware reports on ships by posting guides with tips security.
But Munro points out that in large attacks, the target is usually not the ships.
These are the systems that manage staff, receive emails, manage transfers, etc. These systems are not much different from the IT systems of companies in other industries.
However, they are the most important for shipping Companies. If these systems do not work for proper handling, what is the point of having a ship, the security researcher wonders.
The attacks on the world's largest shipping companies show that the shipping industry has focused on protecting ships and failed to protect coastal systems.
According to ZDNet, usually hackers aim at systems that manage bookings and container transfers. These systems are often breached by criminals, who look for container ID numbers and sea voyages so they can organize attacks, board ships, and steal containers carrying high-value goods such as electronics and jewelry.