Maritime Computer Emergency Response Team ADMIRAL dataset ADMIRAL dataset

Publicly disclosed information for this event

Index Number:
Title:
2017_004
Ports hit by NotPetya.
Day Month Year Country Activity Incident Type
30 June 2017 Netherlands Port Virus/Ransomware

Summary

Ports hit by NotPetya.

Victim

Port of Rotterdam

Claimed/Reported Threat Actor

NotPetya

Origin

Political

Main impact

Availability

References

  1. https://www.portofrotterdam.com/en/news-and-press-releases/cyber-attack-strikes-one-company-in-the-port-area
  2. https://www.portofrotterdam.com/en/news-and-press-releases/port-cyber-hotline-operational

Recommendations to Port to reduce Virus/Ransomware risks:

  • Map, understand, patch and secure your exposed assets on the Internet.
  • Implement email filtering systems to detect and block phishing emails.
  • Train your organisation, personnel regularly against these threats.
  • Install efficient Endpoint Detection and Response (EDR) tools.
  • Work with your CSIRT organization to better understand the Tactics, Techniques and Procedures used by threat actors.
  • Monitor your IT and OT systems to quickly detect potential pre-ransomware activity.
  • Implement an efficient offline backup policy.
  • Encrypt all sensitive data to avoid further data leaks.
Previous Next
Disclaimer: the data are provided as is. France Cyber Maritime and the M-CERT take no responsibility for the soundness, quality, precision, nor the eventual attribution made by the referenced URLs. We give a lot of respect and support to the victims of attacks.
Files generated on Monday, 11th December 2023.
ADMIRAL is licensed under the Creative Commons CC-BY-NC license. Copyright © France Cyber Maritime 2023.