Publicly disclosed information for this event

Index Number:

Title:

2023_138

The website of a Norwegian passenger transport company is the victim of a denial of service attack [...]

Day	Month	Year	Country	Activity	Incident Type
19	October	2023	Norway	Transport	Denial of Service

Summary

The website of a Norwegian passenger transport company is the victim of a denial of service attack claimed by a hacktivist group supporting Russia.

Victim

COLORLINE

Claimed/Reported Threat Actor

NoName057(16)

Origin

Hacktivism

Main impact

Availability

References

https://www.leparisien.fr/faits-divers/corsica-ferries-le-site-de-la-compagnie-cible-par-une-cyberattaque-des-hackers-pro-russes-revendiquent-laction-28-10-2023-MHLKVN37VFAUNDFRNLF7IHFR7Q.php

Recommendations to Transport to reduce Denial of Service risks:

Implement rate limiting and traffic filtering to mitigate the impact of incoming malicious traffic.
Check with your IT service provider that the resilience of its systems against such attack was tested.
Regularly monitor network traffic and set up alerting for unusual patterns or spikes.
Diversify your server locations and use fail-over systems to ensure service availability in case of an attack.
Establish an incident response plan to quickly mitigate and recover from DoS attacks.

Previous Next

Disclaimer: the data are provided as is. France Cyber Maritime and the M-CERT take no responsibility for the soundness, quality, precision, nor the eventual attribution made by the referenced URLs. We give a lot of respect and support to the victims of attacks.

Files generated on Monday, 11th December 2023.
ADMIRAL is licensed under the Creative Commons