Hansa Online: ’Networked port systems mean cybersecurity must become a priority’
As ports become increasingly digitalised and their systems networked, they also become more vulnerable to increasingly sophisticated cyberattacks and cyber crime. Stock image.
Europe analyst Kristian Bischoff was asked by Hansa Online to provide an analysis of the needs for enhanced cybersecurity as ports become digitalised - or Smart Ports as they are often called - for the July cybersecurity theme. In the article, Bischoff outlines the core vulnerabilities, particularly against ransomware.
15 July 2021
In the article for Hansa Online, Kristian Bischoff writes: “With the increased digitisation and computerisation of the world’s ports comes not only more efficient and smooth port operations – but it also opens up ports to small and large cyberattacks, some even with the potential to interrupting operations entirely.”
As more and more operational systems (OT), like cranes, gates, tanks, pipelines etc. are becoming networked, the attack surface has expanded considerably, he writes.
“It is no longer an unthinkable scenario, where hackers target OT systems directly to achieve their intended goals, whether it is ransoming the systems or simply Port systems are becoming networked – cybersecurity must become a priority, causing wide-scale disruption. Similarly, the networked nature of the ports now also means, that a cyber attack may cause port security to shut down large parts of their network to protect systems and users until the severity of the attack is determined and the threat isolated. This means that while the cyber attacks themselves may be relatively small, the overall impact on operations in the port may be significant.”
Read the full article on Hansa Online here: Port systems are becoming networked - cybersecurity must become a priority
NEW PORT CYBERSECURITY WHITEPAPER:
We recently published a whitepaper on port cybersecurity, available for free download. The report outlines the vulnerabilities that the maritime digitalisation process has created, and provides an overview of the threat actors that might exploit these vulnerabilities – and the types of attacks that they might carry out. Looking forward, the report concludes that the potential cost of not integrating cybersecurity procedures by far outweighs that of implementation.