Publicly disclosed information for this event
Several cases of AIS spoofing in the context of the Russian/Ukraine conflict. Probably achieved out [...]
Several cases of AIS spoofing in the context of the Russian/Ukraine conflict. Probably achieved out of the RF spectrum (ie on the API of certain AIS fusion web portals).
Claimed/Reported Threat Actor
Recommendations to Ship to reduce GPS/AIS jamming/spoofing risks:
Implement verification mechanisms for GPS and AIS data. Use multiple sources of location (other GNSS constellation, physical checks) to cross-verify GPS/AIS information. Regularly monitor for signal interference and anomalies in navigation systems. Use Controlled Radiation Pattern Antennas. Educate personnel about the risks and signs of GPS/AIS spoofing attacks. Work with your CSIRT organization to know the geographical zones at risk.
Disclaimer: the data are provided as is. France Cyber Maritime and the M-CERT take no responsibility for the soundness,
quality, precision, nor the eventual attribution made by the referenced URLs. We give a lot of respect and
support to the victims of attacks. Yes, there are no common and shared incident IDs in cyber (for now!).
Files generated on Thursday, 02nd November 2023.
ADMIRAL is licensed under the Creative Commons
Copyright © France Cyber Maritime 2023.