Security Officer News

There’s plenty to go around for everyone, no matter it comes from.I will admit that attending the 2024 Workboat Show in the Big Easy just ten days after settling into the MarineNews Editor’s chair (for this, the second time around) had my full attention. The event typically evokes the specter of drinking from the proverbial fire hose in routine times, but attending and digesting all it has to offer, right out of the gate, makes the task just little bit edgier. Ultimately, last week’s trade show exuded terrific energy, from exhibitors to attendees alike.

A ship passing through the Red Sea 25 nautical miles west of Al-Mukha, Yemen, reported on Sunday that a missile had splashed into the sea nearby, the United Kingdom Maritime Trade Operations (UKMTO) agency said.It did not name the vessel or the owner but cited the relevant company security officer as saying the vessel and crew were safe and proceeding to the next port of call.Yemen's Iran-aligned Houthi militants have been attacking commercial shipping in the Red Sea for more than a year in a bid to enforce a naval blockade on Israel, saying they are acting in solidarity with Palestinians in I

A new report published by DNV has revealed that the majority (61%) of maritime professionals believe the industry should accept increased cyber risk from digitalization if it enables innovation and new technologies.The sector’s appetite to take on emerging risks arising from digital transformation is notably higher than other critical infrastructure industries including energy, manufacturing and healthcare, according to DNV.The industry’s increasing appetite for cyber risk comes at a time when it must manage a growing volume of vulnerabilities.Namely…

Malicious cyber activity in the first six months in the maritime sector increased significantly compared to the previous year, highlighting the importance of introducing proactive security measures to stay ahead of ever evolving tactics of cyber criminals.Marlink recently released the latest global maritime cyber threat report produced by its Security Operations Center (SOC), which registered 23,400 malware detections and 178 ransomware detections in the first half of 2024.Firewall events…

During the first half of the year, the threat landscape in the maritime environment has continued to evolve and surprise, compared to what was recorded in 2023.Marlink’s Security Operations Center (SOC) has reported that monitoring up to 1,800 vessels, adding visibility into events from endpoint protection solutions (EDR), firewalls, and e-mail security, along with the context provided by intelligence capabilities, has allowed it to gain deeper insight into what actions to take…

Infostealers, a type of malware designed to steal sensitive information from an infected system, has marked significant rise in the first half of 2024 in the maritime domain, Marlink’s Security Operations Center (SOC) has reported.The whole process involves six steps – starting from initial infection to the exploitation of acquired data, which can have serious consequences for the maritime industry, which relies heavily on interconnected systems and digital platforms.The initial…

Some of the key strategies to strengthen maritime cyber security include vigilance and proactive measures, timely incident reporting, and continuous improvement of security defenses, according to Marlink’s Security Operations Center (SOC) cyber security threats report.Vigilance and proactive measures are essential. Regular training, strong e-mail security, and advanced detection systems play a vital role in reducing the risk of phishing, spam, and other malicious activitiesAnother crucial aspect of improving cyber security is timely incident response.

In the first half of 2024, the Threat Intelligence team within Marlink’s Security Operations Centre has observed several activities carried out by malicious actors targeting the maritime industry.These activities include phishing, where malicious actors sending fraudulent e-mails or messages try to trick individuals into revealing sensitive information like passwords or financial details.Phishing attack trends include HTM/HTML documents with embedded links and QR codes to credential harvesting login landing pages hosted on difficult-to-block infrastructure…

Botnets are networks of hijacked computer devices used to carry out various scams and cyber attacks, under control of a single attacking party. According to Marlink’s Security Operations Center (SOC) cyber security threats report, the volume of botnet activity increased substantially in maritime sector in the first half of 2024, with new botnets leveraging more advanced evasion techniques.Artificial Intelligence (AI)-enhanced botnets began to surface, showcasing more sophisticated automation capabilities.According to Marlink…

During the first half of this year, the number of cyber security high alerts remained stable compared to those handled in 2023, according to Marlink’s Security Operations Center (SOC) cyber security threats report.However, medium and low alerts saw a significant rise, increasing from 100,000 in January to 270,000 in April, compared to an average of 75,000 in 2023.This surge was mitigated in May and June thanks to optimization efforts in detection and enrichment processes.If you are in New Orleans on November 13…

In the first six months, Initial Access tactics were the most prevalent cyber security threat in maritime domain, accounting for 48% of the 204,763 incidents, primarily involving phishing fraud and spam abusive content.According to Marlink’s Security Operations Center (SOC) on cyber security threats report, the Command & Control (C2) followed closely at 36%, driven largely by the execution of malicious files and links.Execution and Defence Evasion tactics, often seen through intrusion attempts…

Ransomware remained one of the primary threats to maritime targets in the first half of 2024, as it significantly disrupts operations and causes considerable economic damage, according to the to the report from Marlink’s Security Operations Center (SOC) on cyber security threats.Attacks have paralyzed critical systems, delayed shipments, and compromised logistics, resulting in operational downtime and costly ransom demands. This combination of operational impact and financial…

Reverse proxy phishing, a more sophisticated version of classic phishing cyberattack, could significantly impact maritime sectors operations, from the disruption of shipping logistics to the manipulation of sensitive communication systems, resulting in delays, loss of reputation, and costly recoveries.According to the report from Marlink’s Security Operations Center (SOC) on cyber security threats, a significant portion of the threats neutralized by the SOC have continued to follow the most common attack vector seen since 2022: phishing.However…

In the first half of 2024, the volume of cybersecurity incidents involving infostealers has increased significantly, and maritime victims have been no exception.Infostealers are a type of malware designed to steal sensitive information from an infected system, such as login credentials, financial data, browser history, and other personal or corporate information.The maritime industry relies heavily on interconnected systems and digital platforms to manage logistics, shipping routes, and vessel operations.

What drives cyber attackers and what are their main motives for malicious online activities? Who are the most prominent attackers in the maritime industry and how do they do it?According to the report from Marlink’s Security Operations Center on cyber security threats, cyber attackers targeting the maritime industry had a few main motives.Two of the main are operational disruption and financial fraud, where the attackers aim to disrupt or damage critical systems, causing significant interruptions to business operations…

Cyber Security in the maritime and offshore energy space has come front and center, with new Cyber Security rules expected soon from the U.S. Coast Guard.How will these new rules impact your bottom line? If you are in New Orleans on November 13, 2024, sign up now for a free lunch and moderated conference discussion on new United States Coast Guard (USCG) cyber security rules and their impact on the vessel owner/operators, OEMs and shipyards. Featured speakers include:Rear Admiral Wayne R. Arguin Jr., Assistant Commandant for Prevention Policy (CG-5P), U.S.

A Malta-flagged container ship was reportedly targeted with three missiles while on route from Djibouti to the Saudi city of Jeddah, British maritime security firm Ambrey said on Monday.The United Kingdom Maritime Trade Operations (UKMTO) agency said it was informed by the Company Security Officer of an explosion in close proximity to a merchant vessel.UKMTO added that the vessel and its crew were safe and authorities are investigating the incident.Iran-backed Houthi militants have repeatedly launched drones and missiles against international commercial shipping in the Red Sea region since mid

Subrosa Group (SRG) announced it is rolling out a new Maritime Security (MarSec) division, SRG Maritime Security, to deliver security services globally to the commercial shipping and offshore industries, private vessels and superyachts.SRG's CEO, Niall Burns, said, "The establishment of our Maritime Security division is a direct response to the critical need for elite armed protection for large vessels navigating increasingly perilous waters worldwide. Incidents of maritime attacks are alarmingly on the rise…

Twenty armed people have boarded a cargo ship off the coast of Somalia and have taken control of it, a maritime security firm said on Tuesday.The vessel is the latest to be targeted following a resurgence of attacks by Somali pirates in recent months although the maritime security firm, Ambrey, did not specify that it was Somali pirates who boarded the ship.Ambrey said the ship was a Bangladesh-flagged bulk carrier - a type of merchant ship used to transport large amounts of cargo…

An oil tanker caught up in a dispute last year between the United States and Iran was boarded by armed individuals off the coast of Oman on Thursday and appeared to have changed course towards Iran, according to UK maritime sources.The Marshall Islands-flagged tanker St Nikolas was boarded by armed intruders as it sailed close to the Omani city of Sohar, according to British maritime security firm Ambrey, and its AIS tracking system was turned off as it headed in the direction…

A Spanish navy ship is sailing at full speed towards a Maltese-flagged commercial vessel that may have been hijacked by pirates off Somalia, the European Union's Somali counter piracy force said on Friday.If confirmed, it would be the first successful hijacking involving Somali pirates since 2017 when a crackdown by international navies stopped a rash of seizures in the Gulf of Aden and the Indian Ocean.EUNAVFOR's joint operations centre in Spain said it received an alert on Thursday about the "alleged pirate-hijacked vessel" Ruen, which was approximately 500 nautical miles east of Socotra Isl

Indonesia's coast guard said on Tuesday it seized an Iranian-flagged supertanker suspected of involvement in the illegal transshipment of crude oil, and vowed to toughen maritime patrols.The MT Arman 114 was carrying 272,569 metric tons of light crude oil, valued at 4.6 trillion rupiah ($304 million), when it was seized last week, the Indonesian authorities said.The Very Large Crude Carrier (VLCC) was suspected of transferring oil to another vessel without a permit on Friday, the Southeast Asian nation's maritime security agency said.The vessel was captured after being spotted in Indonesia's North Natuna Sea, carrying out a ship-to-ship oil transfer with the Cameroon-flagged MT S Tinos, the agency's chief, Aan Kurnia, said.

Recent cyber attacks to the US Government, the IMO, Maersk, amongst others has caused the world to pay attention to criminal cyber activities by foreign states, terrorists, and criminals. The cyber attack against CMA CGM shut down services for close on two weeks. Two days later, on October 30th the IMO was held hostage by a cyber attack. These attacks follow attacks earlier this year against MSC and COSCO.As of January 1, 2021 all vessels that have a safety management system must address cyber security in order to maintain ISM certification.