07-08. JulAug 2023 issue.qxp_Pages-12-40-JanFeb WPD 07/09/2023 13:24 Page 7
container
cyber security
Cyber Security The COVID-19 pandemic accelerated the digitisation of the world, which was already taking place, making it mandatory for people to work from home via the internet. But are we safe from cyber attacks and what about the maritime industry? Thomas Francis reports…
T
he world economy is heavily dependent on maritime transport, as most of the international trade is carried by sea. As we have seen two years ago with the blockage of the Suez Canal, delays in shipping can result in severe financial loss, especially further down the logictical chain and distribution channels. Therefore, you may not think of ships and fleets closely related to technology, but ships are constantly connected to the internet.
This heavy dependency on the internet makes the shipping industry an attractive target for cyber criminals. And here lies the real problem - some of these systems and computers on these ships often use incredibly complicated and old systems. This makes it much more difficult to protect them from cyberattacks. The systems these ships use are so intertwined that there are many blind spots that are virtually undetectable.
22 World Port Development July/August 2023
Since ships are increasingly dependent on digitisation, integration and automation systems, cyber risk management onboard ships has top priority. As technology advances, the convergence of information technology (IT) and operational technology (OT) onboard ships and their connection to the internet creates a larger target that needs to be addressed.
But it is not only ships that use the internet, ports and terminals alike can be compromised by cyber-attacks. Therefore, cybersecurity should be in place to address the security issues and risks posed by new technologies. At the end of July 2023, the executive director of the Port of Los Angeles provided a remarkable detail about the threat posed to American infrastructure by cyber-criminals and other enemies. “In the month of June alone, we stopped more than 60 million cyber intrusion attempts here,” said Gene Seroka at a news briefing. “It’s one of the biggest issues that we work on every day. We now average 54 million cyber-intrusion attempts per month and we’ve stopped all of them.”
This is in stark contrast compared to the port of Nagoya, Japan, which was victimised by a reported Russian ransomware attack in early July 2023. Infiltrators blocked access to files and operations and then demanded a payoff. It’s not clear what happened in Nagoya exactly, but several terminals at the port were shut down for two days. In June 2023, Pro-Russian hackers targeted the websites of several Dutch ports, including Groningen, Amsterdam, Rotterdam, and Den Helder, with cyber attacks. The DDoS attacks knocked the ports’ websites offline for several hours and in some cases even days. In a DDoS cyberattack, a website or server is flooded with requests until it crashes. NoName057(16) claimed the attacks were in response to the Netherlands’ intention to buy tanks for Ukraine. Although NoName057(16) often targets the banking sector, private companies that supply the Defence industry, and logistics companies in NATO member states, the attacks on Dutch ports’ websites was unusual. In a telegram, NoName057(16) wrote: “The Netherlands want to buy Leopard 1s to deliver to the Ukraine.