Publicly disclosed information for this event

Index Number:

Title:

2016_008

A shipyard is victim of a cyberattack. Data leak.

Day	Month	Year	Country	Activity	Incident Type
11	August	2016	Germany	Shipyard	Intrusion

Summary

The victim, a major conglomerate in Germany with activities spanning steel production to marine systems, reportedly became the target of a cyber intrusion.

According to sources, earlier this year, technical trade secrets from the conglomerate's steel production and plant design divisions were compromised. Internal security measures identified the breach in April, linking it back to incidents from February. The attack corresponds to activities associated with unidentified attackers, their Tactics, Techniques and Procedures however linking them to what is analyzed as southeast Asia.

Post-discovery, it was confirmed that the marine systems unit, a segment crucial for military submarine and warship production, remained untouched. The true extent of intellectual property loss is still undetermined.

Victim

ThyssenKrupp

Claimed/Reported Threat Actor

N/A

Origin

Espionage

Main impact

Confidentiality

Recommendations to Shipyard to reduce Intrusion risks:

Implement strong access controls and authentication mechanisms to limit unauthorized access, such as Multi Factor Authentication.
Regularly update and patch software and systems to address known vulnerabilities.
Use Network Intrusion Detection Systems (NIDS) to monitor and block suspicious activities.
Segment your network to limit lateral movement by attackers in case of a breach.
Educate your employees about phishing attacks and social engineering tactics to prevent credential theft.

Files generated on Monday, 11th December 2023.
ADMIRAL is licensed under the Creative Commons