in Security

Hackers discover perfect storm in the maritime sector

Posted 6 October 2017 · Add Comment

Britain's maritime industry needs to embrace the government's code of practice relating to cyber-security for ships, according to one of the country's leading experts.



Andy Cuff, who heads Computer Network Defence (CND), has warned that vessels are still far too vulnerable to hackers.

The cyber-security expert said that Britain’s maritime sector, which for centuries has led the world, faces being left behind if it doesn’t face up to new challenges.

He added that The Department for Transport’s Code of Practice relating to Cyber Security for Ships should be a basic standard.

The threats are real and recently there has been an increasing number of cyber security breaches at sea.

These include superyachts being remotely controlled by hackers, Maersk being devastated by ransomware and a sudden increase in US warships inexplicably colliding with other vessels in Asia, though the cyber link was vigorously denied.

Andy, whose company is headquartered in Bath, said: “The maritime sector has mostly turned a blind eye to cyber security.

“With ships being moving targets it is often perceived that they are too difficult to attack and provide little value to hackers.

“Recent events have shown this is not the case and cyber-security ought to be as routine as loading container ships correctly and providing physical security to ward off pirates.

“The exponential increase in connected technology, coupled with a laissez faire attitude to security, has resulted in many maritime vessels and fleets becoming easy victims.

“Recent publicity around poor security has resulted in many attackers pouncing on this weak and lucrative link, like a pack of wild dogs descending on a wounded zebra.

“The problems are largely rectifiable if the maritime industry embraces the Department for Transport’s Code of Practice relating to Cyber Security for Ships.

“It explains and defines the risks facing the industry and advices how they can be combated.

“The document is for organisations with one or more ships, insurers, ships' senior officers and those responsible for the day-to-day operation of maritime information technology, operational technology and communications systems.

“An achievable and affordable starting position is the Government-backed Cyber Essentials scheme, which covers five of the most important controls helping to prevent 80% of the current cyber threats.

“Many of our clients are surprised at how achievable Cyber Essentials is; the IT literate usually self-certify and we provide differing levels of support.

“I would also strongly advise that the connected control systems on board vessels are segregated from other networks.

“We occasionally go on to provide clients with some deeply technical support such as detecting when their mobile phone calls are intercepted, bugsweeping and remote monitoring from our Security Operations Centre.

“To safeguard its future, the maritime industry must defend itself against cyber threats or it will be holed below the Plimsoll line.”

 

* required field

Post a comment

Other Stories
Advertisement
Latest News

Smiths Detection to enhnce security at Japan's Narita Airport

Smiths Detection has been selected to supply innovative solutions for people screening and search functions in Tokyo's Narita International Airport.

Air Mauritius takes delivery of its first A350 XWB

Air Mauritius has taken delivery of its first Airbus A350-900 aircraft, opening a new chapter for the Indian Ocean carrier. The aircraft, leased from AerCap, was delivered during a ceremony held in Mauritius today.

Maycast-Nokes wins National Apprenticeship Award

Maycast-Nokes has won the Medium Employer Of The Year 2017 (East of England) at the regional final of the National Apprenticeship Awards 2017.

Global airport industry climate action surpasses 200 airports

At this year's ACI World & Africa Annual General Assembly (WAGA) hosted by Airports of Mauritius Co, the global airport industry issued an update on the progress it has been making in addressing its CO2 emissions, through the

Rolls-Royce Trent 7000 powers A330neo first test flight

The Rolls-Royce Trent 7000 has successfully powered the new Airbus A330neo into the skies for its first test flight today.

Crawley Borough Council approves Boeing Gatwick hangar

Boeing's proposed plan with Gatwick Airport to build a new aircraft hangar has been granted permission to go ahead by Crawley Borough Council, with full works scheduled to commence later this year.

Aviation Africa SK18418
See us at
FIL18 BT111017220718SMI AirMissBT0305251017SMI FAV BT1007161117Aviation Africa BT18418Advanced Engineering BT1007021117SMI MilSat BT2907101117