Tag: cyber security

The implementation of the GDPR from May 2018 comes with many challenges for all organizations as they will need to adopt new business practices, internal policies, technical and organizational measures. Extensive training in data protection and privacy legislation is a critical factor for the success of GDPR.

Security of data and other sensitive information is becoming a concern of maritime as ships are increasingly using systems that rely on digitization, integration, and automation. Here are some guidelines towards maritime cyber security.

US DHS and FBI released a joint Technical Alert targeting organizations in the energy, marine, aviation and other manufacturing sectors, providing a thorough walkthrough on how an organization’s cyber security becomes at-risk as well as recommendations for detection & prevention of possible attacks.

From January 2018, tanker operators are required to use TMSA3 to monitor and improve performance. In comparison with TMSA2, the new edition of TMSA is more extended in length and presents new challenges to ship operators with the introduction of new requirements.

A recent study conducted by Ponemon Institute and sponsored by IBM Resilient found that 77% of respondents do not have a formal cyber security incident response plan applied consistently across their organization, while nearly half of the 2800 respondents reported that their incident response plan is either informal/ad hoc or completely non-existent.

Graham Ahearne, Corvil Director, Security Product Management, said that the advanced, persistent threat landscape in cyber security poses an enormous risk to global financial markets and Cyber Resilience can be built through standards, collaboration and AI-Powered Automation in these markets.

During IACS’ 76th Council Meeting, the members that participated viewed IACS' new initiatives, which aim at the development and implementation of new technologies, including ship autonomy. IACS updated the participants regarding recent developments on its current work and plans, including cyber security and preparation for the 2020 sulphur cap and cyber safety.

New guidelines are developed to help operators in addressing maritime cyber risks. With a series of classification notations, guidelines and services, operators can have a tool to help them comply with regulatory requirements, safeguard their crews and protect their assets from cyber attacks.

The UK P&I Club has compiled a bulletin answering to questions about cyber risks in the shipping industry in relation to P&I insurance. Considering that a cyber-attack could catastrophically impact the safe navigation of a vessel, maritime cyber risks come within the scope of P&I in case these arise from the operation of a ship.

In its March edition of 'Phish and Ships', Be Cyber Aware at Sea cited the most influential and destructive examples of ransomware currently emerging. Despite significant progress, ransomware is still difficult to stop even for Windows computers running antivirus. The only reliable defence is a backup, but even that can come under attack if it can be reached from the infected PC.