Maersk cyber attack shows shipping industry's digital weakness
Just days after Maersk's IT systems were crippled by a cyber attack, the shipping company's 2M alliance partner MSC has said it has so far been unaffected and has offered “its full support to Maersk".
The attack has the potential to throw global container supply chains into chaos, according to Lars Jensen, chief executive of maritime cyber security firm CyberKeel.
Jensen told delegates at the TOC Europe Container Supply Chain conference in Amsterdam yesterday that the attack was likely to spread well beyond Maersk, its terminal operating arm APM Terminals and its customers.
According to his calculations, Maersk’s shipping lines - Maersk Line itself, Safmarine, Seago, MCC Transport and Sealand - have all been affected and book 3,300 TEU (20ft equivalent units) every hour, representing some US$2.7m in revenue per hour.
As of yesterday that equated to at least some 82,500TEU and revenues of US$67.5m having been affected – a combination of shipments caught up in ports and on vessels, and likely lost bookings.
"But there are other shipping lines that have boxes on board Maersk vessels – these will not be able to be unloaded; other lines use APM Terminals’ facilities; and even the third party terminals that are unaffected may well have piles of boxes on their facilities that will be unable to be cleared,” Jensen said.
The number of shippers affected could amount to the tens of thousands.
"If this goes on much longer they will start trying to book with other lines – but guess what, the shippers I spoke to today are being told by other carriers that we have entered the peak season and there’s no space on vessels," he said.
A statement from MSC described the immediate action it had taken.
"We are working together to find other means to transmit data between the two companies. This includes information such as vessel bayplans, load lists, and customs information," the statement said.
"If necessary, the 2M partners are prepared to divert ships away from terminals which are not currently operating as a result of the attack. MSC operates 53 terminals around the world which are fully available to 2M vessels to load and unload cargo with minimal delay," it added.
Jensen said the attack illustrated the inherent digital weakness of the shipping industry.
"By no way does this imply that Maersk had insufficient security – if someone wants to hack you they will find a way," he said.
"What it does mean is that shipping needs to build resilience into its digital products- it’s not about building a system and laying a security system over the top, but building security up front when you begin to develop a system, which I’m afraid is likely to cost more."
In the three years since CyberKeel was formed, it has performed a number of “penetration” tests on shipping firms and found that overall security standards have been low.
“Shipping companies are saying that they are taking the matter seriously, but across the board very little has been done."
"It is unfortunate for Maersk that it has been subject to this attack, but hopefully it will galvanise the industry to make itself more secure,” he said.