Noticias de interés
Can you hack a ship? Global maritime industry ripe for hacking
Fecha de la noticias: 12/04/2018 • Publicada: 12/04/2018
Security researchers have for years been warning the maritime industry that it is low hanging fruit as incredibly high-value cargo is fitted to ships with legacy (at best) systems, bad awareness, poor processes, and seaports that can suffer from the same problems.
The maritime shipping industry is the main conduit for global trade, with more than 80 percent by volume transported from region to region by ships, and 10.3 billion tons in total moving between seaports around the world globally in 2016. Despite this, incident after incident has demonstrated just how much the trillion dollar industry is open to cyber attack.
Security researchers have for years been warning the maritime industry that it is low hanging fruit as incredibly high-value cargo is transported on ships with legacy systems, combined with poor processes and awareness, while the seaports they dock in often suffer from the same problems.
In 2015, Kaspersky Labs went as far as to claim shipping was "easy meat" for hackers. The Russian cybersecurity vendor reported on a wave of significant hacks: these ranged from a drilling rig that was hacked and tilted from its site in South Korea towards South America – in 2010. And in 2012 a criminal gang hacked into the systems of the Australian Customers and Border Protection Service agency, so they could be one step ahead of authorities that placed containers under suspicion.
Maritime security company CyberKeel warned that ships were switching off their navigation systems when travelling through waters where armed pirates are known to operate – sometimes faking the data to make the ships appear they were elsewhere.
A daring scheme in the Belgian port town of Antwerp meanwhile saw criminals gain access to systems that controlled the movement of containers to smuggle cocaine, heroin and guns.
"It"s a very sophisticated attack and they got away with it for a while before they got caught," says cybersecurity firm NCC Group"s Andy Davis, who specialises in transport security. "These people look at the most effective approach that they can take to streamline whatever it is that they intend to do.
Visitar el enlace original