Subscribe to our Mailing Lists (It's free!)
Friday, July 1, 2022
SAFETY4SEA
  • Home
  • Safety
    • All
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
    bsee lessons learned

    Lessons learned: Injuries due to stored energy in slings

    world maritime university

    World Maritime University launches survey on seafarers’ hours of work/rest, workload, and ship manning

    nigeria piracy

    High unemployment of Nigerian seafarers may increase maritime piracy

    narcotics trafficking

    Shipping companies, Customs to step up the fight against narcotics trafficking

  • Green
    • All
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
    clean ammonia supply chain

    Japanese partners present clean ammonia supply chain between UAE and Japan

    norway shore power

    5 new shore power projects to be developed in Norway

    nyk line

    NYK the first Japanese company to become member of UN’s Sustainable Ocean Principles

    center for zero shipping

    Only 35% of major shipping companies have made an IMO or net zero 2050 decarbonization pledge

  • Smart
    • All
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
    emsa drones italy

    Drones help Italy improve its maritime safety and security

    acua ocean

    Autonomous hydrogen-fueled MASS gets approval

    Motorboat Collides With Barge Tow

    Research center in Saudi Arabia to use AI for development of low-carbon solutions

    remotely piloted aircrafts

    Iceland uses EMSA’s drones for better maritime situational awareness

  • Risk
    • All
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    one misdeclared cargo

    ONE to implement penalty fee for misdeclared cargo

    master first officer fined

    Master, First Officer to pay $75,000 for compliance breach in Great Barrier Reef

    carnival cyber security

    Carnival Corporation fined $5M for failed cyber-security protections

    container shipping

    US shipper accuses Yang Ming and HMM of collusion

  • Others
    • All
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Reports
    • Shipping
    • Sustainability
    • Videos
    port of rotterdam carbon neutral

    10 projects that will make Port of Rotterdam carbon neutral by 2050

    schedule reliability

    Schedule reliability stable between between 30% and 40%

    offshore support vessels

    IMCA: Demand for US crew to operate offshore support vessels is undersupplied

    port of Ras Lanuf

    Libya halts oil shipments from port of Ras Lanuf due to political crisis

  • Columns
    UK Chamber of Shipping: Electrification will play a key role in the industry’s decarbonization

    UK Chamber of Shipping: Electrification will play a key role in the industry’s decarbonization

    fire onboard

    Examining Ro-Ro/-Pax, PCTC fires

    IMO: Digitalization paves the way for smarter and greener shipping

    IMO: Digitalization paves the way for smarter and greener shipping

    Trending Tags

    • Career Paths
    • Industry Voices
    • Maripedia
    • Maritime History
    • Resilience
    • Seafarers Stories
    • SeaSense
  • Events
  • Plus
No Result
View All Result
  • Home
  • Safety
    • All
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
    bsee lessons learned

    Lessons learned: Injuries due to stored energy in slings

    world maritime university

    World Maritime University launches survey on seafarers’ hours of work/rest, workload, and ship manning

    nigeria piracy

    High unemployment of Nigerian seafarers may increase maritime piracy

    narcotics trafficking

    Shipping companies, Customs to step up the fight against narcotics trafficking

  • Green
    • All
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
    clean ammonia supply chain

    Japanese partners present clean ammonia supply chain between UAE and Japan

    norway shore power

    5 new shore power projects to be developed in Norway

    nyk line

    NYK the first Japanese company to become member of UN’s Sustainable Ocean Principles

    center for zero shipping

    Only 35% of major shipping companies have made an IMO or net zero 2050 decarbonization pledge

  • Smart
    • All
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
    emsa drones italy

    Drones help Italy improve its maritime safety and security

    acua ocean

    Autonomous hydrogen-fueled MASS gets approval

    Motorboat Collides With Barge Tow

    Research center in Saudi Arabia to use AI for development of low-carbon solutions

    remotely piloted aircrafts

    Iceland uses EMSA’s drones for better maritime situational awareness

  • Risk
    • All
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    one misdeclared cargo

    ONE to implement penalty fee for misdeclared cargo

    master first officer fined

    Master, First Officer to pay $75,000 for compliance breach in Great Barrier Reef

    carnival cyber security

    Carnival Corporation fined $5M for failed cyber-security protections

    container shipping

    US shipper accuses Yang Ming and HMM of collusion

  • Others
    • All
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Reports
    • Shipping
    • Sustainability
    • Videos
    port of rotterdam carbon neutral

    10 projects that will make Port of Rotterdam carbon neutral by 2050

    schedule reliability

    Schedule reliability stable between between 30% and 40%

    offshore support vessels

    IMCA: Demand for US crew to operate offshore support vessels is undersupplied

    port of Ras Lanuf

    Libya halts oil shipments from port of Ras Lanuf due to political crisis

  • Columns
    UK Chamber of Shipping: Electrification will play a key role in the industry’s decarbonization

    UK Chamber of Shipping: Electrification will play a key role in the industry’s decarbonization

    fire onboard

    Examining Ro-Ro/-Pax, PCTC fires

    IMO: Digitalization paves the way for smarter and greener shipping

    IMO: Digitalization paves the way for smarter and greener shipping

    Trending Tags

    • Career Paths
    • Industry Voices
    • Maripedia
    • Maritime History
    • Resilience
    • Seafarers Stories
    • SeaSense
  • Events
  • Plus
No Result
View All Result
SAFETY4SEA

Cybersecurity: How to handle a cyber-attack

by The Editorial Team
October 23, 2020
in Cyber Security
Cybersecurity: How to handle a cyber-attack
FacebookTwitterEmailLinkedin

Cyber-attacks are calling the shipping industry to take crucial steps. Several attacks have been reported until now, with the most recent, the attack against the IMO. These incidents outline the importance to invest in cyber security as shipping accelerates its path towards digitalization.

In fact, COVID-19 is calling for more and rapid digital evolution, in order for the industry to survive and opt for more effective operations. Yet, digitalization is a new path for the sector, making it difficult to deal with, on the one hand, while on the other, the sector has shown great signs of maneuvering through smart options and changes.

Steps to handle a potential attack

The first and most important tip is training, which will ensure that all employees, according to their positions, will be able to handle such an incident.

RelatedNews

Carnival Corporation fined $5M for failed cyber-security protections

NAPA: Shipping must improve its cyber resilience

Step 1: Know which are the most usual cyber threats

A recent report conducted by ENISA analyzes which have been the top cyber threats in the timeframe between January 2019 to April 2020.

Accordingly, they gathered the top 15 threats, which are the following:

  • Malware
  • Web-based Attacks
  • Phishing
  • Web Application Attacks
  • SPAM
  • Distributed Denial of Service (DDoS)
  • Identity Theft
  • Data Breach
  • Insider Threat
  • Botnets
  • Physical Manipulation, Damage, Theft and Loss
  • Information Leakage
  • Ransomware
  • Cyber Espionage
  • Crypto-jacking.

“Knowing your enemy” means that you will be prepared and implement an analysis, as well as a plan if an attack occurs. Moreover, it is important to identify and control who has access to the attacked information and conduct background checks.

Step 2: Move into cyber security action mode

When the attack occurs, keep in mind that it is important to have installed and updated an anti-virus, anti-spyware and other anti-malware program, that will definitely assist you.
In addition, man a team consisting of experts, such as an IT team, data forensics experts, that will help you determine the size and scope of the attack.

Keep in mind that OT systems control the physical world and IT systems manage data. OT systems differ from traditional IT systems. OT is hardware and software that directly monitors/controls physical devices and processes. IT covers the spectrum of technologies for information processing, including software, hardware and communication technologies. Traditionally OT and IT have been separated, but with the internet, OT and IT are coming closer as historically stand-alone systems are becoming integrated.

Below, ICS has issued a table explaining the differences between OT and IT teams.

Step 3: Assess risk exposure

In a report, the ICS along with additional shipping players, highlight the importance of determining the likelihood of vulnerabilities being exploited by external threats.

They advise to

Determine the likelihood of vulnerabilities being exposed by inappropriate use. Determine the security and safety impact of any individual or combination of vulnerabilities being exploited.

Step 4: Develop protection and detection measures

It is recommended to reduce the likelihood of vulnerabilities being exploited through protection measures, and reduce the potential impact of a vulnerability being exploited.

Tips to detect a cyber-attack are:

  • Identify mysterious emails, such as phishing.
  • Note unusual.
  • Password activity.
  • Identify suspicious pop-ups.
  • Report a slower-than-normal network.
  • Keep software up-to-date.
  • Unexpected or sudden changes in available disk space or memory.

Step 5: Establish contingency plans

Develop a prioritized contingency plan to mitigate any potential identified cyber risk.

It is important to understand that cyber incidents may not disappear by themselves.

If for example, the ECDIS has been infected with malware, starting up the back-up ECDIS may cause another cyber incident. It is, therefore, recommended to plan how to carry out the cleaning and restoring of infected systems.

Being informed about any recent cyber incidents, the kind and the impact they had, could be used to improve the response plans of all ships in the company’s fleet and an information strategy for such incidents may be considered.

Step 6: Recovery

After a cybersecurity breach, you’ll need mechanisms in place to help resume normal operations.

Find how the attack occurred and whether there was a breach in your security systems or it was the outcome of a human error and then move towards improving the existent processes, procedures and technologies.

Keep in mind that it is crucial to make full backups of important business data and information, while also continue to schezule incremental backups.

Tags: cyber incidentscyber riskcyber securitydigitalization

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

clean ammonia supply chain

Japanese partners present clean ammonia supply chain between UAE and Japan

June 30, 2022
norway shore power

5 new shore power projects to be developed in Norway

June 30, 2022
MARITIME EVENTS

Newsletter

GET THE SAFETY4SEA IN YOUR INBOX!

Explore

  • Safety
  • Green
  • Smart
  • Risk
  • Others
  • Events
  • Plus

Useful Links

  • About
  • Disclaimer
  • Editorial Policies
  • Advertising
  • Contact

© 2021 SAFETY4SEA

No Result
View All Result
  • Safety
    • Alerts
    • Accidents
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
  • Green
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
  • Smart
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
  • Risk
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    • Vetting
  • Others
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Reports
    • Shipping
    • Sustainability
    • Videos
  • Columns
    • Opinions
    • Career Paths
    • Industry Voices
    • Maripedia
    • Maritime History
    • Seafarers Stories
    • SeaSense
  • Events
  • Plus

© 2021 SAFETY4SEA

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Disclaimer.