Ransomware attack hits maritime giant DNV
The Norwegian Shipping Classification Society DNV has been hacked by a Ransomware (opens in a new tab) The attack forced the company to shut down some of its servers.
The attack affected approximately 1,000 ships using DNV’s ShipManager software – a tool that DNV customers use to monitor various features of their shipping fleet.
DNV says about 300 companies use the tool to manage more than 7,000 vessels. Of those, 70 companies manage about 1,000 ships that have been affected by the incident – about 15% of the total fleet.
unknown attacker
The on-board, offline functions can still be used, the company said, adding that other systems on board were not affected by the ransomware attack. Moreover, the ships can still operate.
Besides the ShipManager servers, other servers and other data were also not affected, the company also said.
More details about the case are missing. The company did not say which group was behind the attack or how the ransomware was deployed (if any malware, phishing, or social engineering was used in the attack). No group has yet claimed responsibility for the attack.
We also don’t know the ransom demand or the deadline as the company declined to comment on the possibility of sensitive data being stolen and also declined to say whether the attack caused any delays to the data. ship and cargo or not.
However, DNV has confirmed that police and other law enforcement agencies have been notified.
“The attack has been reported to the Norwegian Police, who have informed the relevant police authorities. It has also been reported to the Norwegian National Security Agency, the Norwegian Data Protection Authority (DPA) and the German Cybersecurity Agency. All affected customers have been informed of their responsibility to notify the relevant Data Protection Authority in their country,” the organization said.
Via: TechCrunch (opens in a new tab)