The cyber risks from integrated IT and OT

摘要

Ship operators and owners need to prepare for IMO's changes to the International Ship Management (ISM) Code that sees cyber risk management become part of vessel safety and security plans. Owners need to act before these recommendations come into force on 1 January 2020, for in four months' time, port state control such as the US Coast Guard could begin detaining ships for non-compliance. But shipping companies are already being hacked and suffering cyber attacks. This includes the now notorious attack on Maersk Line's IT networks in 2017, which caused more than USS300M in losses for the Danish container shipping group. Other more recent attacks include successful cyber breaches on networks operated by Toll Group, Mediterranean Shipping Company, Anglo-Eastern and OSM Maritime Group.