Maritime Computer Emergency Response Team ADMIRAL dataset ADMIRAL dataset

Publicly disclosed information for this event

Index Number:
Title:
2019_003
Two cruising ships are bit by phishing attacks. Personal data leak.
Day Month Year Country Activity Incident Type
1 May 2019 United States Ship Spearphishing

Summary

Two cruising ships are bit by phishing attacks. Personal data leak.

Victim

Carnival

Claimed/Reported Threat Actor

N/A

Origin

Cybercrime

Main impact

Confidentiality

References

  1. https://www.travelagentcentral.com/cruises/data-breach-affects-princess-cruises-holland-america-line-guests
  2. https://digit.fyi/carnival-cruise-lines-announces-cyber-attack-on-its-systems/

Recommendations to Ship to reduce Spearphishing risks:

  • Implement advanced email filtering systems to detect and block spearphishing emails.
  • Educate employees about the dangers of spearphishing and how to identify suspicious emails.
  • Enforce strict email access controls and authentication measures.
  • Implement organizational measures to avoid scam.
  • Limit the use of social networks or unallowed medias for professional activities.
  • Monitor for unusual email activity, such as unexpected login attempts.
  • Work with your CSIRT organization to know the Tactics, Techniques and Procedures used.
Previous Next
Disclaimer: the data are provided as is. France Cyber Maritime and the M-CERT take no responsibility for the soundness, quality, precision, nor the eventual attribution made by the referenced URLs. We give a lot of respect and support to the victims of attacks.
Files generated on Monday, 11th December 2023.
ADMIRAL is licensed under the Creative Commons CC-BY-NC license. Copyright © France Cyber Maritime 2023.