Maritime Computer Emergency Response Team ADMIRAL dataset ADMIRAL dataset

Publicly disclosed information for this event

Index Number:
Title:
2020_021
Cruising company hit by ransomware. Important data leak.
Day Month Year Country Activity Incident Type
15 August 2020 United States Shipowner Data leak

Summary

Cruising company hit by ransomware. Important data leak.

Victim

Carnival

Claimed/Reported Threat Actor

N/A

Origin

Cybercrime

Main impact

Confidentiality

References

  1. https://www.carnivalcorp.com/news-releases/news-release-details/carnival-corporation-plc-identifies-ransomware-incident
  2. https://www.infosecurity-magazine.com/news/carnival-confirms-passenger-data/
  3. https://www.prnewswire.com/news-releases/carnival-corporation--plc-update-on-cyber-event-301151284.html

Recommendations to Shipowner to reduce Data leak risks:

  • Ensure data encryption measures are in place to protect sensitive information.
  • Implement access controls to limit data access to authorized personnel only.
  • Regularly audit and monitor data access and transmission for potential leaks, for instance via Security Operation Center services.
  • Check and test all communication and customers and third parties-focused plans.
Previous Next
Disclaimer: the data are provided as is. France Cyber Maritime and the M-CERT take no responsibility for the soundness, quality, precision, nor the eventual attribution made by the referenced URLs. We give a lot of respect and support to the victims of attacks.
Files generated on Monday, 11th December 2023.
ADMIRAL is licensed under the Creative Commons CC-BY-NC license. Copyright © France Cyber Maritime 2023.