Splash 247

SOFTimpact: Why maritime is so vulnerable to cyber attacks

SOFTimpact: Why maritime is so vulnerable to cyber attacks

Array
(
    [0] => WP_Term Object
        (
            [term_id] => 70
            [name] => Europe
            [slug] => europe
            [term_group] => 0
            [term_taxonomy_id] => 70
            [taxonomy] => category
            [description] => Stay updated on what's going on in Europe by browsing the European region news archive. Find the latest maritime, offshore and shipping news on Splash 24/7.

Find here the updated list of the latest news about the European region. Browse Splash 24/7 for more maritime and shipping news.
            [parent] => 55
            [count] => 4877
            [filter] => raw
            [cat_ID] => 70
            [category_count] => 4877
            [category_description] => Stay updated on what's going on in Europe by browsing the European region news archive. Find the latest maritime, offshore and shipping news on Splash 24/7.

Find here the updated list of the latest news about the European region. Browse Splash 24/7 for more maritime and shipping news.
            [cat_name] => Europe
            [category_nicename] => europe
            [category_parent] => 55
        )

    [1] => WP_Term Object
        (
            [term_id] => 81
            [name] => Maritime CEO
            [slug] => maritime-ceo
            [term_group] => 0
            [term_taxonomy_id] => 81
            [taxonomy] => category
            [description] => This is the Splash 24/7 archive of news related to Maritime CEO. News are sorted by release date, from the latest to the oldest.

Read the latest news about Maritime CEO. Browse Splash 24/7 for more maritime and shipping news.

            [parent] => 0
            [count] => 928
            [filter] => raw
            [cat_ID] => 81
            [category_count] => 928
            [category_description] => This is the Splash 24/7 archive of news related to Maritime CEO. News are sorted by release date, from the latest to the oldest.

Read the latest news about Maritime CEO. Browse Splash 24/7 for more maritime and shipping news.

            [cat_name] => Maritime CEO
            [category_nicename] => maritime-ceo
            [category_parent] => 0
        )

    [2] => WP_Term Object
        (
            [term_id] => 68
            [name] => Operations
            [slug] => operations
            [term_group] => 0
            [term_taxonomy_id] => 68
            [taxonomy] => category
            [description] => Stay updated on what's going on in the maritime and shipping operations areas by browsing the operations news archive. Find the latest news about all the things maritime on Splash 24/7.

Get the updated list of the latest news about operations. Browse Splash 24/7 for more maritime and shipping news.

            [parent] => 54
            [count] => 1807
            [filter] => raw
            [cat_ID] => 68
            [category_count] => 1807
            [category_description] => Stay updated on what's going on in the maritime and shipping operations areas by browsing the operations news archive. Find the latest news about all the things maritime on Splash 24/7.

Get the updated list of the latest news about operations. Browse Splash 24/7 for more maritime and shipping news.

            [cat_name] => Operations
            [category_nicename] => operations
            [category_parent] => 54
        )

    [3] => WP_Term Object
        (
            [term_id] => 9
            [name] => Tech
            [slug] => tech
            [term_group] => 0
            [term_taxonomy_id] => 9
            [taxonomy] => category
            [description] => This is the Splash 24/7 archive of the tech news related to maritime and shipping. News are sorted by release date, from the latest to the oldest. 

Read the latest news about tech. Browse Splash 24/7 for more maritime and shipping news.

            [parent] => 54
            [count] => 402
            [filter] => raw
            [cat_ID] => 9
            [category_count] => 402
            [category_description] => This is the Splash 24/7 archive of the tech news related to maritime and shipping. News are sorted by release date, from the latest to the oldest. 

Read the latest news about tech. Browse Splash 24/7 for more maritime and shipping news.

            [cat_name] => Tech
            [category_nicename] => tech
            [category_parent] => 54
        )

)

The maritime industry appears to be specifically vulnerable to cyber attacks due to several factors including the fact that IT systems onboard were designed with a ‘the system must work under all conditions’ instead of ‘the system must work securely’ mind set, argues Markus Schmitz, the managing director of Cyprus-based IT provider SOFTimpact in today’s Maritime CEO interview.

Schmitz’s comments are especially pertinent in the wake of the recent high profile cyber attack that crippled much of Maersk’s operations worldwide.

Other factors that make it tricky to secure shipping from hackers are the wide chain of people involved in day-to-day operations. Several parties – crew, managers, service personnel, pilots, auditors, inspectors, charterers – cooperate in operating the vessel. “This makes physical access security as a base of any cyber security partially hard to enforce,” Schmitz observes.

Other issues to be aware of include the common use of voyage contracts which potentially effects employee loyalty and training investments.

Moreover, the international character of shipping facilitates certain common cyber threats, like phishing attacks and CEO fraud, Schmitz maintains. Moreover, the lack of consideration in existing regulation, particularly ISM and STCW, does not help the situation.

“In order to overcome the challenges posed the industry needs to go through a change of mindset, where technology is used more consciously and technology purchasing decisions are taking cyber security into consideration,” Schmitz says, musing: “Is it really advisable to purchase an ECDIS system, which relies on USB sticks in order to distribute updates?”

SOFTimpact highly recommends to task the HSQE departments of shipping managers and owners to start building a cyber security culture similar to the safety culture already established, relying on the same proven mechanisms, like encouraging crew to raise non- conformities.

Commercial pressure is pushing companies this year into adopting new technologies like the internet of things and blockchain, something that worries Schmitz who is also an executive committee member at Intermanager.

“I would advise the industry to apply an adequate amount of caution. No matter how much potential these technologies might promise, maturity in cyber security is best achieved in incremental steps,” he concludes.

Share this article

Related Posts

2 Comments

  1. Lars Bergqvist
    August 9, 2017 at 4:55 pm

    Since you do not want to have ECDIS connected to internet, the update is done by using an USB on which information has been downloaded from an email’s attachment.
    How else will you update ECDIS? By snailmail?

  2. George
    August 10, 2017 at 9:24 am

    Do not understand the title, i think it is a bit overstated to the sensationalist side.
    If something is connected, it is vulnerable to cyber, period. So far, it never occurred to me that maritime is soooooooo vulnerable. Wanna see vulnerability? Look at TNT where they had a complete mess with their parcel business.

    Other industries also possess the same characteristics as maritime, as also enumerated in the article and yet, i would say that maritime is less connected and thus, less exposed.