International journal of advanced smart convergence

The Institute of Internet, Broadcasting and Communication (한국인터넷방송통신학회)
권호 표지
DOI QR코드

DOI QR Code

Summary of Maritime Cyber Attacks and Risk Management

  • Received : 2022.06.14
  • Accepted : 2022.06.22
  • Published : 2022.09.30
Download PDF
⟨ Previous Next ⟩

Abstract

The targets of cyber-attacks are not limited to the websites and internal IT systems of shipping agencies. Ships and ports have become important targets for cyber attackers. This paper examines the current state of ship network security, introduces the International Maritime Organization's resolution on ship network security management, and summarizing the cyber-attacks in maritime so the readers can have a general understanding of maritime environment.

Keywords

Acknowledgement

This work was supported in part by the Ministry of Education, Science and Technology, Basic Science Research Program, through the National Research Foundation of Korea (NRF), under Grant NRF-2016R1D1A1B01011908. and was a part of the project titled 'Marine digital AtoN information management and service system development(2/5) (20210650)', funded by the Ministry of Oceans and Fisheries, Korea.

References

  1. OneOcean, "The Importance of Ship-to-Shore Communication Is More Vital Than Ever," The Maritime Executive, Jun-2-2022 https://www.maritime-executive.com/features/the-importance-of-ship-to-shore-communication-is-more-vital-than-ever
  2. Liu, Sheng et al. "Ship information system: overview and research trends." International Journal of Naval Architecture and Ocean Engineering 6 (2014): 670 - 684. https://doi.org/10.2478/IJNAOE-2013-0204
  3. E. Ouzounoglou, M. Koutsokeras, P. Bpye et al. "A multisource communication gateway and An advanced visualization interface for maritime surveillance systems based on the inter-VTS Exchange Format Service," International Journal of Transport Development and Integration, Vol. 3, No. 4 (2019), 355-368 https://doi.org/10.2495/TDI-V3-N4-355-368
  4. Martin Sovind Jensen, "Insatech Marine Performance Monitoring System," InsaTech, 01-07-2022 https://www.insatechmarine.com/products/performance/performance-monitoring-system
  5. I. S. Jang, M. S. Kim, "Implementation of the Shore-based Maritime Information Service Platform for e-Navigation Strategic Implementation Plan, " J . Navig. P ort Res. Vol. 39, No. 3 : 157-163, June 2015 https://doi.org/10.5394/KINPR.2015.39.3.157
  6. "How Vessel Reporting System Makes your Reporting Job Easier," CyberLogitec, October-13-2014 https://www.cyberlogitec.com/news/how-vessel-reporting-system-makes-your-reporting-job-easier/
  7. "Ship to Shore Communications" BATS, 27-06-2022 https://www.extendingbroadband.com/aerial-tracking/ship-shore-communications-2/
  8. "The INMARSAT-F" is released," Jun-2003 https://www.jrc.co.jp/eng/100th/event-single/event105/index.html
  9. J. Ward, "Inmarsat's The Future of Maritime Safety Report 2022 tracks rise in vessel incidents," Fathom World, June-7-2022 https://fathom.world/inmarsats-the-future-of-maritime-safety-report-2022-tracks-rise-in-vessel-incidents-during-covid-19-pandemic/
  10. INMARSAT-C, 02-07-2022 https://www.inmarsat.com/en/solutions-services/maritime/services/inmarsat-c.html
  11. "Global Maritime Distress and Safety System (GMDSS)," Federal communications Commission, April-8-2022 https://www.fcc.gov/wireless/bureau-divisions/mobility-division/ship-radio-stations/global-maritime-distress-and-safety
  12. Koshevyy, Vitaliy Mykhaylovych and Aleksandr V. Shishkin. "Standardization of Interface for VHF, MF/HF Communication Using DSC within Its Integration with INS in the Framework of e-Navigation Concept." TransNav, the International Journal on Marine Navigation and Safety of Sea Transportation, vol 13, No 3,pp. 593-596 Sept 2019 https://doi.org/10.12716/1001.13.03.15
  13. "Maritime Cyber Risk Management In Safety Management Systems, " MSC.428(98) - International Maritime Organization, 16-June-2017 https://wwwcdn.imo.org/localresources/en/OurWork/Security/Documents/Resolution%MSC.428(98).pdf
  14. "Guidelines On Maritime Cyber Risk Management," MSC-FAL.1/Circ.3/Rev.1, International Maritime Organization, 14 June 2021 https://wwwcdn.imo.org/localresources/en/OurWork/Facilitation/Facilitation/MSC-FAL.1-Circ.3-Rev.1.pdf
  15. Jaime Alvarez, "IALA Workshop On Cyber Security," International Association of Marine Aids to Navigation and Lighthouse Authorities Association Internationale de Signalisation Maritime, Report of the workshop on Cyber security, Nov-19-2021
  16. "S-100 based Product Specifications" International Hydrographic Organization (IHO), 09-06-2022 https://iho.int/en/s-100-based-product-specifications
  17. K. Stouffer, M. Pease, C. Y. Tang, T. Zimmerman, V. Pillitteri et al. "Guide to Operational Technology (OT) Security," National Institute of Standards and Technology (NIST), April-2022 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-82r3.ipd.pdf
  18. Editorial Team, "Cyber-attack targets Port of London Authority," In Cyber Security, SAFETY4SEA, May-27-2022 https://safety4sea.com/cyber-attack-targets-port-of-london-authority/
  19. M. Bruno, "Cyber attacks on Costa Rica prompt action from carriers," In Port Technology International, May-18-2022 https://www.porttechnology.org/news/cyber-attacks-on-costa-rica-prompt-action-from-carriers/
  20. Editorial Team, "Terminal at India's top container port affected by cyber-attack," In Cyber Security, SAFETY4SEA, Feb-23-2022 https://safety4sea.com/terminal-at-indias-top-container-port-affected-by-cyber-attack/
  21. "Ransomware Attack on Swire Pacific Offshore Breaches Personnel Data," In The Maritime Executive, Nov-26-2021 https://www.maritime-executive.com/article/ransomware-attack-on-swire-pacific-offshore-breaches-personnel-data
  22. J. Haworth, "French shipping giant CMA CGM suffers data breach" In The Daily Swing Cybersecurity news and views, Sep-21-2021 https://portswigger.net/daily-swig/french-shipping-giant-cma-cgm-suffers-databreach#:~:text=French%shipping%company%CMA%CGM,employment%information%have%b een%leaked
  23. S. Shead, "South Africa port operations halted and workers reportedly put on leave after major cyberattack," In CNBC, Jun-27-2021 https://www.cnbc.com/2021/07/27/transnet-halts-port-operations-in-south-africa-after-major-cyberattack.html
  24. S. Chambers, "K Line apologises for second hacking incident this year," Splash247, July-2-2021 https://splash247.com/k-line-apologises-for-second-hacking-incident-this-year/
  25. N. H. Prevljak, "HMM hit by cyber attack" In Offshore Energy, June-15-2021 https://www.offshore-energy.biz/hmm-hit-by-cyber-attack/
  26. P.M.Staff, "Washington's Port of Kennewick hit by cyberattack," In Professional Mariner Journal of the Maritime Industry, Nov-20-2020 https://professionalmariner.com/washingtons-port-of-kennewick-hit-by-cyberattack/
  27. "Norwegian shipbuilder Vard has been hit by a ransomware encryption cyberattack," CSN Cyprus Shipping News, June-11-2020 https://cyprusshippingnews.com/2020/06/11/norwegian-shipbuilder-vard-has-been-hit-by-a-ransomware-encryption-cyberattack/
  28. J. A. Gross, "Cyberattack on port suggests Israeli tit-for-tat strategy, shows Iran vulnerable," In The Times of Israel, May-19-2020 https://www.timesofisrael.com/cyberattack-on-port-suggests-israeli-tit-for-tat-strategy-shows-iran-vulnerable/
  29. M. Schuler, "Suspecting Cyber Attack, MSC Reports Network Outage - Update," gCaptain leader in maritime and Offshore News, April-10-2020 https://gcaptain.com/msc-reports-network-outage-cyber-attack-cannot-be-ruled-out/
  30. P. Paganini, "Massive cyber attack hit the town hall of Marseille ahead local election," In Security Affairs, March-15-2020 https://securityaffairs.co/wordpress/99658/malware/marseille-city-massive-attack.html
  31. N. Z. Hussain, "Marine firm James Fisher reports cyber breach," In Reuters News, Nov-05-2019 https://www.reuters.com/article/us-james-fisher-cybercrime-idUSKBN1XF1SQ
  32. D. Winder, "U.S. Coast Guard Issues Alert After Ship Heading Into Port Of New York Hit By Cyberattack," In Forbes Cybersecurity, July-09-2019 https://www.forbes.com/sites/daveywinder/2019/07/09/u-s-coast-guard-issues-alert-after-ship-heading-into-port-of-new-york-hit-by-cyberattack/?sh=3d3a454641aa
  33. P. Paganini, "Port of San Diego hit by a cyber attack a few days after the attack on the Port of Barcelona," In Security Affairs, September-28-2018 https://securityaffairs.co/wordpress/76623/hacking/port-of-san-diego-attack.html
  34. "Barcelona port suffers cyber attack," In PortSEurope News and Information, Sept-20-2018 https://www.portseurope.com/barcelona-port-suffers-a-cyber-attack/
  35. E. Nakashima, P. Sonne, "China hacked a Navy contractor and secured a trove of highly sensitive data on submarine warfare," In National Security Washington Post, June-08-2018 https://www.washingtonpost.com/world/national-security/china-hacked-a-navy-contractor-and-secured-a-trove-of-highly-sensitive-data-on-submarine-warfare/2018/06/08/6cc396fa-68e6-11e8-bea7-c8eb28bc52b1_story.html