Cyber-attacks itensify on the high-seas

Oil tankers and container vessels are increasingly open to cyber-attack as more devices are hooked up online. That’s according to a study by global security company Rapid7, conducted in April this year. The study found that more than 100 000 devices – from traffic signal equipment to oil and gas monitors – were connected to the internet using serial ports with poor security. “The lines get blurry, and it highlights the fact that all industries and all technologies need to focus more on security,” said Mark Schloesser, co-author of the study, adding that as more devices are hooked up online, so they become more vulnerable to attack. “As industries like maritime and energy connect ships, containers and rigs to computer networks, they expose weaknesses that hackers can exploit,” he noted. Reuters news agency has reported a few incidents this year: hackers recently shutting down a f loating oil rig by tilting it, while another rig was so riddled with computer malware that it took 19 days to make it seaworthy again, and Somali pirates helping choose their targets by viewing navigational data online. Last month Reuters reported that hackers had infiltrated computers connected to the Belgian port of Antwerp, located specific containers, made off with their smuggled drugs and deleted the records. While data on the extent of the maritime industry’s exposure to cyber crime is hard to come by, a study of the related energy sector by insurance brokers Willis estimated that globally cyber-attacks against oil and gas infrastructure would cost energy companies close to US$1.9 billion by 2018. Wn.com reports that researchers have discovered significant holes in the three key technologies sailors use to navigate: GPS, marine Automatic Identification System, and a system for viewing digital nautical charts called Electronic Chart Display and Information System.