Transportation News

Petya Ransomware Cyber Attack Hits Maersk Line

While all vessel operations will continue, making “the majority” of port calls, the shipping line says it has “shut down” IT and communications infrastructure as a security measure.

World Economic Forum Resources

Companies

  • Maersk Line, the global containerized division of the A.P. Moller – Maersk Group, is dedicated to delivering the highest level of customer-focused and reliable ocean transportation services. The Maersk Line fleet comprises more than 600 vessels and a number of containers corresponding to more than…

  • The World Economic Forum is an independent international organization committed to improving the state of the world by engaging business, political, academic and other leaders of society to shape global, regional and industry agendas. Incorporated as a not-for-profit foundation in 1971, and headquartered…

  • Company Quicklook

Maersk Line is today unable to take bookings following yesterday’s Petya ransomware cyber attack, in what has been called “shipping’s Y2K moment”.

While all vessel operations will continue, making “the majority” of port calls, the shipping line says it has “shut down” IT and communications infrastructure as a security measure.

Maersk said:

“Access to most ports is not impacted, however some APM Terminals are affected and gates are closed. Cargo in transit will be offloaded as planned. Import cargo will be released to credit customers.”

Petya is thought to have disrupted 17 of APMT’s terminals, including Los Angeles, Rotterdam and Jawaharlal Nehru Port Trust in Mumbai, leading to some confusion and congestion. APMT was unavailable for comment.

TNT Express is also said to be a victim, suffering some warehouse operation issues.

Fear of cyber attacks has grown recently in the logistics industry. It rose to sixth on the list of the World Economic Forum’s Global Risks Report 2017, after entering the list in 2014.

Jody Cleworth, CEO of blockchain-based forwarder Marine Transport International, said: “We are facing our Y2K moment. It shows that legacy systems are outdated and simply no longer fit for purpose.”

CargoSmart has pulled together a Vessel Monitoring Dashboard to monitor vessels during this time of recovery from the cyber attack.

One of the particular problems for the supply chain is the large number of stakeholders involved – just one weak link can open them up to attack.

However, this threat can be eliminated by using blockchain, a global distributed ledger, currently being examined by Maersk.

“It is open to anyone, where anything of value like money, containers, bills of lading, location and routing information, are stored and managed securely and privately,” Martyn Walker, of Agility Sciences, told The Loadstar.

“Trust is established through mass collaboration and code, rather than by powerful intermediaries like governments, banks and corporations.

“A Trojan attack like this would not have had any impact. Blockchain runs in a sterile environment. The only way to get data in is through the chain – but an attack wouldn’t work, and it would also leave clues for forensic scientists.”

Lars Jensen, CEO of SeaIntelligence Consulting and CyberKeel, warned the industry of the threat last year.

“The industry is in very poor shape when it comes to cyber security. It needs awareness among senior management – this is not an IT issue. Firewalls and anti-virus software will not keep out dedicated attacks. If you think you haven’t been hacked – you are wrong.”

Lars Jensen, CEO, SeaIntelligence Consulting and CyberKeel

“Our general take on the state of the maritime industry is that cyber defenses are quite low and systems are easily breached.”Lars Jensen,
CEO, SeaIntelligence Consulting and CyberKeel

Meanwhile Maersk partner MSC felt obliged to put its own note out to customers, reassuring them that all its systems and business operations are working normally.

It said it was offering “full support” to Maersk and they were “working together to find other means to transmit data between the two companies. This includes information such as vessel bayplans, load lists, and customs information”.

It added: “If necessary, the 2M partners are prepared to divert ships from terminals which are not currently operating as a result of the attack.”

Mr Jensen also warned ports and terminals that they were likely to be in the vanguard of cyber attacks. Yesterday, he posted a blog noting:

“We have specifically warned repeatedly against the likelihood of ransomware (and similar) attacks."

A key component in the cyber defence for such attacks is having a solid plan for re-installing everything from back-up; something outlined as early as our white paper in 2014 about creating a maritime cyber-resilient organisation. How quickly Maersk will get back online is unknown.”

Mr Jensen revealed that Maersk Line generated a revenue stream of some $5.9m an hour – in 20 hours it would have potentially have “lost” $118m. But, he added:

“This does not mean that Maersk has lost this level of business, it is likely a number of customers will simply postpone their bookings for a little while. But the keyword is “a little while”.

And he warned that the industry as a whole should take the issue seriously.

"Our general take on the state of the maritime industry is that cyber defenses are quite low and systems are easily breached (although positive exceptions do happen)."

"Over the past 12-18 months, there has been a gradual change in the mindset of the industry, and the prevailing attitude is now a recognition that cyber security may indeed be a genuine threat."

“However, we also find that this recognition, in many cases, still does not translate into the allocation of appropriate resources to properly investigate a company’s current level of cyber security, or the allocation of proper resources related to sustained heightening of cyber readiness.”

The Petya attack began in Ukraine, with major impacts in Russia and Poland and, according to Wired, is designed to spread with speed.

The hackers have demanded a $300 bitcoin payment – however, the email client being used, German firm Posteo, has closed the address listed so payments cannot be made.

Other major companies affected are pharmaceutical company Merck, and Russian oil giant Rosneft.

SOURCE: Maersk Operations hit by cyber attack as hackers demand ransom

Update: Danish shipping giant A.P. Moller-Maersk was hit by a cyberattack that crippled its computer systems globally, but the company says it has now "contained the issue." The Copenhagen-based company said they "have shut down a number of systems to help contain the issue." While the attack impacted a number of Maersk's ports, the company says that vessels were "maneuverable, able to communicate and crews are safe" (see video above).

Related Article: Massive Cyber Attack Hits Businesses Worldwide

The Risks-Trends Interconnections Map

Download the Paper:  The Global Risks Report 2017

Article Topics
Videos   Trends   Transportation   Ocean   Bitcoin   Cyber Attack   Ports   Shipping   All topics


Comments
Be the first to post a comment.
You must be logged in to post a comment. Login.

 
Latest Transportation News
Transportation Predictions That Will Shake-Up the Supply Chain Industry In 2018
Dan Clark, Founder and President of Kuebix, gives his annual vision of what he sees happening in the transportation and supply chain industry including; tax reforms, decreased capacity, higher rates, and…

Home Depot Considers Buying $9 Billion XPO Logistics So Amazon Doesn’t
If Home Depot were to make an offer, one main impetus would be to keep XPO out of the hands of Amazon, which the home improvement retailer believes has also considered buying the logistics company, according…

CSX Provides Surface Transportation Board with Update on Precision Scheduled Railroading Progress
In a letter to leadership at the United States Surface Transportation Board, CSX CEO James Foote outlined the progress the Jacksonville, Fla.-based Class I freight railroad carrier has made in its ongoing…

The Five Ways 3PLs Can Retain Their Employees
Creating a positive work environment can help your 3PL improve its operational performance.


 

24|7 Pro Team

The 24|7 Team is your direct pipeline to solutions for your business challenges. It's your opportunity to have supply chain and logistics experts look at your specific challenges and needs, and give you free, no-obligation advice, solutions, and information.

The 24|7 Team will simplify the task of creating a database of likely partners, building your knowledge base, and preparing your Request for Proposal list.

1
  Choose a topic for your RFP

Transportation RFP/RFI

The Transportation RFP is your direct pipeline to solutions for your transportation challenges. It's your opportunity to have logistics experts look at your specific transportation challenges and needs, and give you free, no-obligation advice, solutions, and information specific to your request.

Choosing the perfect software or system can be an indomitable challenge. Using this transportation/TMS RFP will simplify the task of creating a database of likely partners, building your knowledge base, and preparing your Request for Proposal list.

Warehouse/DC Management RFP/RFI

The Warehouse Management Systems (WMS) RFP is your direct pipeline to solutions for your WMS challenges. It's your opportunity to have logistics experts look at your specific WMS challenges and needs, and give you free, no-obligation advice, solutions, and information specific to your request.

Choosing the perfect WMS solution can be an indomitable challenge. Using this WMS RFP will simplify the task of creating a database of likely partners, building your knowledge base, and preparing your WMS Request for Proposal list.

Supply Chain RFP/RFI

The Supply Chain RFP is your opportunity to have logistics experts look at your specific challenges and needs, and receive free, no-obligation advice, solutions, and information. It simplifies finding a pool of likely partners, building your knowledge base, and preparing your Request for Proposal list. The companies in the Logistics Planner have agreed to respond to your request for in-depth information and follow-up, and your request is totally confidential.

Software/Technology RFP/RFI

The Software/Technology is your direct pipeline to solutions for your logistics information technology challenges. It's your opportunity to have logistics experts look at your specific technology challenges and needs, and give you free, no-obligation advice, solutions, and information specific to your request. Whether it's WMS, TMS, Mobile or Cloud, our pros can help.

The companies listed below have agreed to respond to your request for in-depth information and follow-up. Your request is totally confidential.

Executive Education RFI

The Logistics and Supply Chain Education RFI can help you identify the schools, coursework, continuing education, distance learning and certification opportunities available from leading logistics educational institutions.

Upgrade and improve your logistics and supply chain skillsets. Whatever route you choose—advanced degree, executive education, certification or distance learning—the time and money you invest in your education today can pay off in continued career success tomorrow. Contact leading universities and professional institutions for the information you need to prepare for the future.

Third Party Logistics RFP/RFI

This 3PL Request for Proposal (RFP)/Request for Information (RFI) can help you find the 3PL and 4PL providers that can meet your specific 3PL service challenges and needs. The 3PL companies below will provide free, no-obligation third-party logistics advice, solutions, and information.

Ask your 3PL questions, you'll get answers. Simply complete the information, and detail your 3PL challenges. Then, check off the third-party logistics companies that you want to review your request.

1. Choose an RFI topic.
2. Enter your contact information and challenge.
3. Select companies and optional categories.
4. Submit.


2

Your Information



Your Challenge, Problem or Request *

3

Select Transportation Companies

  • Select All

  • 3Gtms
  • BluJay Solutions
  • CSX Trans. Intermodal
  • Kuebix
  • Landstar
  • Legacy Supply Chain Svs.
  • One Network
  • Pitt Ohio
  • Purolator
  • Quintiq
  • SEKO Logistics
  • SMC3


Select Relevent Categories

  • Air Freight
  • Intermodal
  • Motor Freight
  • Ocean Freight
  • Rail Freight
  • TMS

Select Warehouse/DC Management Companies

  • Select All

  • 3PL Central
  • Apex Supply Chain Tech.
  • Honeywell Intelligrated
  • Kuebix
  • Legacy Supply Chain Svs.
  • Swisslog
  • Westfalia Technologies
  • Zebra Technologies


Select Relevent Categories

  • Auto ID & Data Capture
  • Automation
  • Conveyors & Sortation
  • Lift Trucks
  • Packaging & Labeling
  • Pallets & Containers
  • Shelving & Racking
  • WMS

Select Supply Chain Companies

  • Select All

  • 3Gtms
  • 3PL Central
  • Amber Road
  • Apex Supply Chain Tech.
  • APICS
  • BluJay Solutions
  • CSX Trans. Intermodal
  • Frontier Business
  • Kuebix
  • Legacy Supply Chain Svs.
  • Logility
  • One Network
  • Purolator
  • Quintiq
  • SMC3
  • Synchrono
  • TAKE Supply Chain
  • Westfalia Technologies
  • Zebra Technologies


Select Relevent Categories

  • Global Trade
  • Inventory Management
  • Risk Management
  • Sustainability

Select Software/Technology Companies

  • Select All

  • 3GTMS
  • 3PL Central
  • Apex Supply Chain Tech.
  • BluJay Solutions
  • Honeywell Intelligrated
  • Frontier Business
  • Kuebix
  • Logility
  • One Network
  • Quintiq
  • SMC3
  • Swisslog Logistics
  • Synchrono
  • TAKE Supply Chain
  • Zebra Technologies


Select Relevent Categories

  • ERP
  • Sales & Operations
  • Sourcing/Procurement
  • Optimization
  • Transportation Mgmt
  • Warehouse Mgmt

Select Executive Education Choices

  • Select All

  • Graduate Courses
  • Online/Distance
  • Executive Education
  • Certifications
  • Undergraduate
  • Seminars
  • Associations
  • Conferences
  • Tradeshows


Select Third Party Logistics Companies

  • Select All

  • 3PL Central
  • Landstar
  • Legacy Supply Chain Svs.
  • Purolator
  • SEKO Logistics
  • Westfalia Technologies


4
 

24|7 Company Profiles