Cyber resilience is more than security

Issue 4 2022 Industrial (Industry), Information Security, Infrastructure


Kate Mollett.

The shipping and logistics industry is increasingly a target of cybercrime and ransomware attacks, a trend that has accelerated in recent years. The reason for this is simple, these companies store and process a wealth of personal information that is immensely valuable, so a successful attack can be a highly profitable exercise.

However, the damage these attacks cause financially and reputationally can be catastrophic. Companies need to implement leading-edge ransomware recovery and ransomware protection to enable them to protect and recover data quickly, minimising damages and loss.

An industry under siege

There are many examples of cyberattacks and data breaches across the shipping and logistics sector, from companies of all sizes. There were also several high-profile data breaches in 2020 and 2021, which have shone a spotlight on this industry under siege. In April 2020, Mediterranean Shipping Company was the victim of a malware attack that caused an outage to the company’s website and customer portal. In June, global conglomerate Maersk reported a cyberattack that caused in excess of $300 million in losses. CMA CGM was attacked in September, with a breach that impacted its peripheral servers.

This trend accelerated into 2021. In September, CMA CGM was hit again, this time with an attack targeting customer information. In November, shipping giant Swire Pacific Offshore (SPO) fell victim to a cyberattack that caused a significant data breach that resulted in the loss of confidential proprietary commercial information and personal data.

In December, US logistics company D.W. Morgan exposed over 100 GB of sensitive data on clients and shipments, including financial, transportation, shipping and personal details. Also in December, Hellman Worldwide Logistics was targeted by RansomEXX ransomware, and more than 70 GB of stolen data, including customer names, user IDs, email addresses and passwords, was leaked.

Size doesn’t matter

While the examples above are of large multinational shipping and logistics conglomerates, cyber threats affect providers of all sizes across the supply chain. A case in point is a malware attack on a third-party supplier for Canada Post in May 2021, which resulted in a data breach impacting 950 000 parcel recipients. Another example is a ransomware attack on a small trucking company in the US, which could potentially have taken down the entire business.

The reality is that cybercrime does not discriminate based on size, and all organisations throughout the supply chain need to take the relevant steps to protect data and ensure the ability to recover from an attack. While digital transformation can improve efficiency in the logistics sector, it can also introduce vulnerabilities if data security is not prioritised.

A multi-layered approach

Data security is a vital tool to protect against ransomware, and it needs to take the form of a multi-layered defence to guard on multiple levels, build on a zero-trust framework for advanced security, that should be flexible and scalable to meet digital transformation goals.

The first step is to identify, assess and mitigate risk exposure, including implementing tools like multi-factor authentication and dual authorisation. Data then needs to be locked and hardened, using air gapping and immutable copies of data to reduce the attack surface and better safeguard it. Clean backup copies help to minimise risk as well as the downtime associated with a data breach. Active and advanced threat and anomaly monitoring provide early warning alerts of suspicious and malicious activities.

Finally, consistent recovery processes need to be put into place across all data and workloads to restore wherever the data is needed. Solutions should also actively work to avoid ransomware file reinfections by deleting suspicious or unnecessary files from backups, isolating suspect backup copies, and enabling restoration to a safe location.

With the increasing number of attacks on the shipping and logistics sector, protecting data is essential. What is arguably more important, however, is the ability to recover quickly in the event of an attack. Extended downtime and continued exposure can end up costing millions, and the reputational damage can be severe, not to mention the regulatory penalties associated with leaked personal information. Having an effective recovery strategy and the right tools in place is critical to protecting organisations in this vulnerable industry.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Threats, opportunities and the need for post-quantum cryptography
AI & Data Analytics Infrastructure
The opportunities offered by quantum computing are equalled by the threats this advanced computer science introduces. The evolution of quantum computing jeopardises the security of any data available in the digital space.

Read more...
Smart surveillance and cyber resilience
Axis Communications SA Surveillance Information Security Government and Parastatal (Industry) Facilities & Building Management
South Africa’s critical infrastructure sector has to step up its game regarding cybersecurity and the evolving risk landscape. The sector has become a prime target for cybercriminals on top of physical threat actors, and the consequences of an incident can be far-reaching.

Read more...
Axis introduces ACS Edge and cloud storage
Axis Communications SA Surveillance Infrastructure Products & Solutions
Axis Communications has launched two new solutions within the AXIS Camera Station ecosystem, AXIS Camera Station Edge (ACS Edge) and AXIS Camera Station Cloud Storage (ACS Cloud Storage).

Read more...
Autonomous healing systems are the future
Infrastructure Information Security AI & Data Analytics
Autonomous healing software, an emerging technology, is gaining traction for its potential to transform how organisations manage software maintenance, security, and system performance.

Read more...
Quality fire detection installation at Baywear Clothing
G2 Fire Fire & Safety Industrial (Industry) Products & Solutions
JZL Projects and Solutions was asked to provide a comprehensive yet cost-effective and reliable fire detection solution for Baywear Clothing that would be installed with minimum disruption to the factory.

Read more...
Cost-effective and reliable remote connectivity
Agriculture (Industry) Integrated Solutions Infrastructure
Companies that operate in hard-to-connect areas now have access to reliable connectivity due to a collaboration between MTN South Africa, Vox and Tarana technology.

Read more...
Is cybersecurity broken?
Information Security Infrastructure
Companies are spending large amounts on cybersecurity, yet cyber threats continue to persist and thrive. Security executives are under tremendous pressure, and companies are questioning the wisdom of their security budgets.

Read more...
Kaspersky detects over 1 million daily tracking attempts
Kaspersky News & Events Information Security
Kaspersky's latest analysis of the 25 most prevalent web tracking services, including Google services, New Relic and Microsoft, has revealed over 38 billion instances of web trackers collecting user behaviour data in 2024, with an average of one million detections per day.

Read more...
Only 4% of surveyed organisations reported no cyberattacks
News & Events Information Security
As cyber threats escalate in frequency and sophistication, new research reveals an alarmingly high rate of security incidents over the past year, due to a lack of awareness and qualified professionals as key contributing factors.

Read more...
There is a SaaS for everything, but at what cost, especially to SMEs?
Editor's Choice Information Security Security Services & Risk Management
Relying on SaaS platforms presents significant cybersecurity risks as the number of providers in your landscape increases, expanding your attack surface. It is important to assess the strength of the SaaS providers in your chain.

Read more...