Maritime Computer Emergency Response Team ADMIRAL dataset ADMIRAL dataset

Maritime cybersecurity for year 2020 - Disclosed incidents

38 maritime cybersecurity incidents found for 2020

Incidents table - Year 2020

Date Country Incident type Victim Incident summary
XX/XX/2020 GB Virus/Ransomware Ship A vessel has its ship server and clients infected by a ransomware. Data loss.
XX/XX/2020 US Virus/Ransomware Ship Three vessels are infected by a ransomware.
28/12/2020 DE Virus/Ransomware Shipowner Cruising company hit by a cyberattack. May have also impacted its ships and other ships of the group[...]
14/12/2020 NO Virus/Ransomware Shipowner Cruising company hit by a ransomware attack making some IT systems unavailable for days. Several per[...]
16/11/2020 FR Virus/Ransomware Logistics A logistics company is targeted by a ransomware attack.
16/11/2020 US Virus/Ransomware Port Fluvial port hit by ransomware. Attackers asked for a $US 200 000 ransom. Systems were recovered in [...]
20/10/2020 CA Virus/Ransomware Logistics A transportation service firm is hit by the Egregor group.
15/10/2020 US Virus/Ransomware Logistics An important transportation service firm is hit by a ransomware attack. Data leak.
01/10/2020 GB Virus/Ransomware Shipowner A ferry company is targeted by a ransomware attack causing impact on booking systems.
30/09/2020 GB Intrusion Organisation -Sophisticated- cyberattack on a worldwide maritime organisation.
28/09/2020 FR Virus/Ransomware Shipowner Shipowner hit by ransomware, data leak.
25/09/2020 GR Virus/Ransomware Shipowner A ferry and shipping company is targeted by a ransomware attack.
25/09/2020 MT Intrusion Organisation A transportation organisation is victim of an intrusion and has to stop its IT for five days.
20/09/2020 FR Virus/Ransomware Logistics Multimodal actor hit by ransomware.
11/09/2020 DK Virus/Ransomware Logistics Multimodal actor hit by ransomware.
15/08/2020 US Data leak Shipowner Cruising company hit by ransomware. Important data leak.
15/08/2020 NO Intrusion Classification company Possible espionage case.
05/08/2020 NO Virus/Ransomware Offshore A company working in the offshore domain in targeted by a ransomware attack.
01/08/2020 US Spearphishing Port Spearhishing against the MTS.
25/07/2020 MU Human error Ship The bad setting of an ECDIS concurs to the grounding of a ship.
23/07/2020 US Virus/Ransomware Manufacturer A GPS manufacturer working, amongst others, for the maritime sector, is hit by a ransomware attack.
20/06/2020 US Virus/Ransomware Offshore A company working in dredging, waterfront construction, piers and wharves, bridge building, heavy li[...]
19/06/2020 FR Virus/Ransomware Shipyard Yachting shipyard hit by cyberattack.
09/06/2020 NO Virus/Ransomware Shipyard Shipyard hit by a ransomware attack altering its operational capacities. Partial unemployment.
02/06/2020 NO Virus/Ransomware Shipowner A ship and crew management and marine services providing company is hit by a ransomware attack.
18/05/2020 HK Virus/Ransomware Shipowner A shipowner is victim of a ransomware attack. 20% of workstations and 10% of its servers are encrypt[...]
09/05/2020 IR Intrusion Port Ports hit by cyberattack believed to be from state origin - operational capacities altered.
05/05/2020 AU Data leak Logistics Multimodal actor hit by data leak.
01/05/2020 US GPS/AIS jamming/spoofing Ship AIS Crop circles off California.
27/04/2020 US Virus/Ransomware Offshore An offshore company is targeted by a ransomware attack - data leak.
23/04/2020 SE Virus/Ransomware Manufacturer A marine manufacturer is targeted by a ransomware attack.
21/04/2020 CL Phishing Ship A maritime authority informs of several cases of impersonating in a few cases of phishing asking for[...]
10/04/2020 CH Virus/Ransomware Shipowner Cruising company hit by a cyberattack - its systems are impacted during five days.
07/04/2020 DK Virus/Ransomware Industry A pumping system manufacturing company is hit by a ransomware cyberattack.
15/03/2020 FR Virus/Ransomware Port Cyberattack on a smart port.
23/02/2020 US Data leak Logistics Logistics actor hit by a cyberattack. Data leak.
10/01/2020 FR Virus/Ransomware Logistics A multimodal logistic actor is hit by a ransomware attack
05/01/2020 US Data leak Ship During a TV set on board a cruising ship, a password is readable on a screen.

Most impacted maritime activities - Year 2020

  • Shipowner: 9 disclosed maritime cybersecurity incidents (23.7%)
  • Logistics: 8 disclosed maritime cybersecurity incidents (21.1%)
  • Ship: 6 disclosed maritime cybersecurity incidents (15.8%)
  • Port: 4 disclosed maritime cybersecurity incidents (10.5%)
  • Offshore: 3 disclosed maritime cybersecurity incidents (7.9%)
  • Manufacturer: 2 disclosed maritime cybersecurity incidents (5.3%)
  • Shipyard: 2 disclosed maritime cybersecurity incidents (5.3%)
  • Organisation: 2 disclosed maritime cybersecurity incidents (5.3%)
  • Industry: 1 disclosed maritime cybersecurity incident (2.6%)
  • Classification company: 1 disclosed maritime cybersecurity incident (2.6%)

Most impacted countries - Year 2020

  • United States: 11 disclosed maritime cybersecurity incidents (28.9%)
  • France: 6 disclosed maritime cybersecurity incidents (15.8%)
  • Norway: 5 disclosed maritime cybersecurity incidents (13.2%)
  • United Kingdom: 3 disclosed maritime cybersecurity incidents (7.9%)
  • Denmark: 2 disclosed maritime cybersecurity incidents (5.3%)
  • Switzerland: 1 disclosed maritime cybersecurity incident (2.6%)
  • Chile: 1 disclosed maritime cybersecurity incident (2.6%)
  • Sweden: 1 disclosed maritime cybersecurity incident (2.6%)
  • Australia: 1 disclosed maritime cybersecurity incident (2.6%)
  • Iran, Islamic Republic of: 1 disclosed maritime cybersecurity incident (2.6%)
  • Hong Kong: 1 disclosed maritime cybersecurity incident (2.6%)
  • Mauritius: 1 disclosed maritime cybersecurity incident (2.6%)
  • Greece: 1 disclosed maritime cybersecurity incident (2.6%)
  • Malta: 1 disclosed maritime cybersecurity incident (2.6%)
  • Canada: 1 disclosed maritime cybersecurity incident (2.6%)
  • Germany: 1 disclosed maritime cybersecurity incident (2.6%)

Incident types - Year 2020

  • Virus/Ransomware: 26 disclosed maritime cybersecurity incidents (68.4%)
  • Data leak: 4 disclosed maritime cybersecurity incidents (10.5%)
  • Intrusion: 4 disclosed maritime cybersecurity incidents (10.5%)
  • Phishing: 1 disclosed maritime cybersecurity incident (2.6%)
  • GPS/AIS jamming/spoofing: 1 disclosed maritime cybersecurity incident (2.6%)
  • Human error: 1 disclosed maritime cybersecurity incident (2.6%)
  • Spearphishing: 1 disclosed maritime cybersecurity incident (2.6%)

Claimed or Reported Threat Actor - Year 2020

  • REvil: 2 disclosed maritime cybersecurity incidents (5.3%)
  • Maze: 2 disclosed maritime cybersecurity incidents (5.3%)
  • Egregor: 2 disclosed maritime cybersecurity incidents (5.3%)
  • Mespinoza/Pysa: 1 disclosed maritime cybersecurity incident (2.6%)
  • Israel: 1 disclosed maritime cybersecurity incident (2.6%)
  • Ragnar Locker: 1 disclosed maritime cybersecurity incident (2.6%)

Evolution - Year 2020

Files generated on Monday, 11th December 2023.
ADMIRAL is licensed under the Creative Commons CC-BY-NC license. Copyright © France Cyber Maritime 2023.