DNV, a Norwegian shipping classification society, has confirmed its systems were hit by a ransomware attack, affecting around 1,000 ships that rely on its technology.
The Oslo-based DNV said in a statement on Wednesday that its ShipManager software was targeted by file-encrypting malware on January 7, forcing the organization to shut down its servers. ShipManager is a fleet management software that allows DNV shipping customers to monitor the operational, technical and compliance features of a shipping fleet, and is used by more than 7,000 vessels owned by 300 customers, according to the company’s website.
DNV said that 70 customers operating around 1,000 vessels were affected by the attack, close to 15% of its total fleet.
In a statement given to TechCrunch, DNV spokesperson Margrethe Andersen confirmed that all impacted vessels can still use the onboard, offline functionalities of the ShipManager software. “The cyber-attack does not affect the vessels’ ability to operate,” said Andersen.
DNV also says it’s confident that other DNV servers have not been affected. However, when asked whether any data was compromised as a result of the attack, the company declined to comment. DNV also declined to say whether the attack would result in any delays for ships and their onboard cargo.
The company said it is cooperating with the police. “We cannot release information that could harm or delay the investigation,” the spokesperson said.
It is unclear how DNV was compromised, if the company received a ransom demand or who was behind the attack. TechCrunch checked the websites of several major ransomware groups but found no mention of DNV.
“DNV is working closely with global IT security partners to analyze the incident and ensure secure online operations as soon as possible,” the company said. “All affected customers have been advised to consider relevant mitigating measures depending on the types of data they have uploaded to the system.
The ransomware attack on DNV is one of many to have impacted the shipping industry in recent weeks. The Port of Lisbon, the third-largest shipping port in Portugal, was the target of a LockBit ransomware attack on Christmas Day.
SC Media UK has collected predictions across a range of categories from cybersecurity experts. Here we give you the roundup… What might 2023 bring in term of cyber? Our experts found consensus on a few areas. First, boardroom metrics will become more important as senior execs demand transparency through quantified insights on the company’s security posture. […]
Reddit has confirmed hackers accessed internal documents and source code following a “highly-targeted” phishing attack. A post by Reddit CTO Christopher Slowe, or KeyserSosa, explained that on February 5 the company became aware of the “sophisticated” attack targeting Reddit employees. He says that an as-yet-unidentified attacker sent “plausible-sounding prompts,” which redirected employees to a website masquerading as Reddit’s […]
Every developer knows that it’s a bad idea to hardcode security credentials into source code. Yet it happens and when it does, the consequences can be dire. Until now, GitHub only made its secret scanning service available to paying enterprise users who paid for GitHub Advanced Security, but starting today, the Microsoft-owned company is making […]
Leave a Reply