The growing cyber threat to global shipping

The growing cyber threat to global shipping

A cyberattack paralysed several major ports in Australia for days
A cyberattack paralysed several major ports in Australia for days. Photo: DAVID GRAY / AFP/File
Source: AFP

The cyberattack that paralysed several major Australian ports was a sharp reminder of what governments and experts say is a growing threat to shipping, the lifeblood of the global economy.

The attack on DP World's ports -- which handle 40 percent of Australia's freight trade -- forced them offline for days and was the latest in a series of breaches at ports around the world in recent years.

Who has been targeted?

Cyberattacks have disrupted or halted operations at some of the world's busiest ports in recent years.

A ransomware attack in July at Japan's busiest port, Nagoya, disrupted operations for days.

Oil terminals last year at some of western Europe's largest ports could not process vessels because of a cyberattack.

Read also

Australian ports reopen after cyberattack

And in 2017, the "NotPetya" malware spread into systems around the world, crippling the operations of global shipping giant Maersk.

There have also been cyberattacks at major ports in the Netherlands, Canada, India, South Africa and the United States.

Nearly 75 percent of US shipping executives say their companies had faced cyberattacks, according to a 2022 survey by the law firm Jones Walker.

Why are governments worried?

Shipping is crucial to the global economy, moving more than 80 percent of trade in goods, according to the UN's trade body UNCTAD.

And the entire infrastructure contains what experts have described as single points of failure -- where one cyberattack at a port can cause a logistical nightmare across the supply chain.

"If you were looking for a target, that would be the target," Rob Nicholls, an associate professor at the University of New South Wales in Sydney, told AFP.

Read also

Cyberattack may cripple major Australian ports for days

"This is why under Australian law and increasingly around the world, ports are regarded as critical infrastructure because they are... a single point of failure in the supply chain."

The US Cyberspace Solarium Commission warned in a report this year: "A cyberattack against a complex maritime ecosystem could be devastating to the stability of the global economy."

Is shipping more vulnerable now?

Automation and connectivity in global maritime operations have increased rapidly in recent years, linking everything from cargo-handling machines at ports to traffic control in waterways to sensors on ships.

While that has boosted efficiency, security firms and government bodies have warned that there are now more points for cyberattackers to target.

An intrusion at a port manager's office, for example, could allow a hacker to insert malicious code that can in turn paralyse the entire facility.

"Ports are target-rich environments" for cyberattackers, the US research firm Mitre said in a report this year.

Read also

Australia ports firm fights to restore operations after cyber incident

And the paralysis at one port could cascade around the world, said UNSW's Nicholls, offering the example of the 2021 traffic jam caused when the Suez Canal was blocked by a giant container ship.

There was "an almost universal expectation" of cyberattacks on the shipping industry, according to an industry survey published this year by DNV, a global maritime classification and risk management firm.

"Cybersecurity is a growing safety risk," said DNV's Knut Orbeck-Nilssen, "perhaps even 'the' risk for the coming decade."

Source: AFP

AFP avatar

AFP AFP text, photo, graphic, audio or video material shall not be published, broadcast, rewritten for broadcast or publication or redistributed directly or indirectly in any medium. AFP news material may not be stored in whole or in part in a computer or otherwise except for personal and non-commercial use. AFP will not be held liable for any delays, inaccuracies, errors or omissions in any AFP news material or in transmission or delivery of all or any part thereof or for any damages whatsoever. As a newswire service, AFP does not obtain releases from subjects, individuals, groups or entities contained in its photographs, videos, graphics or quoted in its texts. Further, no clearance is obtained from the owners of any trademarks or copyrighted materials whose marks and materials are included in AFP material. Therefore you will be solely responsible for obtaining any and all necessary releases from whatever individuals and/or entities necessary for any uses of AFP material.

Online view pixel