June 29, 2017 | Industry Insights

Latest Ransomware Attack Hits Shipping Industry

Share This:
Featured Image

In May, the WannaCry global ransomware attack targeted computers worldwide running Microsoft’s Window operating system by encrypting data and demanding ransom payments. WannaCry brought computer systems from Russia to China to the U.K. and the U.S. to their knees, locking people out of their data and demanding they pay a ransom or lose everything. More than 200,000 computers in 150 countries were affected. Now ransomware virus Petya has hit companies worldwide, including shipping giant A.P. Moller-Maersk, which handles one out of seven containers shipped globally.

The Petya cyber attack caused outages at Maersk’s computer systems across the world, including at its APM Terminals, preventing new bookings from taking place or providing quotes at affected terminals. Within hours, Maersk, however, was able to accept cargo bookings through its third-party platform, INNTRA, for existing accounts, though booking confirmations are taking longer than usual. “We are still working on resuming normal operation,” the company announced via Twitter.

The cyber-attack shut down a number of Maersk’s IT systems including those it uses to communicate with its customers and business partners. According to Seatrade Maritime News, reports from New Zealand indicated the line was using handwritten communication with ports as well as G-mail accounts with customers.

In the United States, the supply chain fallout from the Petya attack has been significant. APM Terminals’ operations in Mobile, Alabama, according to Splash24/7, for example, have been loading and unloading containers in manual mode without the use of a computerized system. In New Jersey, APM Terminals’ gate operations in Port Elizabeth were shuttered.

The full scale of the Petya cyber attack on Maersk globally remains unclear. “We continue to assess the situation. Until this analysis is complete, we cannot be specific about how many sites and locations are affected or when normal business operations are restored. The aggregate impact on our business is being assessed,” Maersk said.

In addition, the Petya cyber attack, according to Seatrade Maritime News, also affected Maersk’s logistics arm Damco. “Damco has limited access to certain systems. A business continuity plan has been deployed with a key focus on protecting customers’ cargo flows,” the company said.

This type of attack quite evidently has a domino effect on the entire supply chain. Just one weak link opens up everyone to potential attacks and subsequent delays. Coordinating ship arrivals, unloading containers and then scheduling storage and trucks to move products out of ports requires a high degree of coordination and efficiency. A big bottleneck in a single port can reverberate widely and quickly.

What is ransomware?

Ransomware is a type of malware that essentially takes over a computer and prevents users from accessing data on it until a ransom is paid. The average ransom amount is $300 to $500 per computer, and the favored payment is bitcoin. In most cases, the software infects computers through links or attachments in malicious messages known as phishing emails. The software usually is hidden within links or attachments in emails. Once the user clicks on the link or opens the document, the computer is infected and the software takes over.

Although ransomware has been around for years, these latest global attacks are much more insidious. Both WannaCry and Petya borrowed leaked National Security Agency code that permits software to spread quickly within an organization’s network.

To minimize the potential of a ransomware attack, there are several cyber security steps you can take including:

  • Look for malicious email messages that often masquerade as emails from companies or people you regularly interact with online. Avoid clicking on links or opening attachments in those messages, since they could unleash malware.
  • Regularly back up data. There are a ton of options here, from backing up to cloud providers to local storage devices or even network attached drives, but each comes with a certain level of risk. It’s imperative to remove the external storage device once a backup has been taken so that if ransomware does infect the computer, it won’t be able to touch the backup.
  • Ensure that security updates are installed on your computers as soon as they are released. Up-to-date backups make it possible to restore files without paying a ransom. WannaCry and Petya attack exploited vulnerabilities in some versions of Microsoft Windows. Microsoft has released software patches for the security holes, but not everyone has installed those updates. The new malware, however, appears to have a back-up spreading mechanism, so that even if some computers were patched, they can still be hit if one or more machines in a particularly network wasn’t patched.
  • Download protection programs that not only fight attacks, but also notify you when there is a threat to your computer. These programs include firewalls, anti-virus programs and other protective software. They can alert you if a malware is trying to encrypt your files and what they are doing to stop it.

Be sure to have a business continuity plan in place so that you can get your operations running as smoothly as possible as quickly as possible. In addition, be sure to carry Cyber Liability insurance, which can be designed to include cyber extortion coverage in the event of a ransomware attack. Roanoke Trade, which specializes in serving the insurance needs of transportation and logistics providers, is available to discuss how Cyber insurance works and the various coverages available in the policy. Please contact one of our Roanoke Trade professionals at 1-800-ROANOKE (800-762-6653) for more information.

Share This:

Related


Thank You to Karen Groff

We have important news to share with you. Karen Groff, President of Roanoke Insurance Group, has decided to leave the organization. Although our hearts are heavy with this news, we respect her decision and wish her all the best in her future endeavors. Karen played an integral role in Roanoke’s success over the past 30 years and solidified “The Roanoke Way” during her tenure as President. In her own words, Karen shares: “I will always treasure my time spent with Roanoke colleagues, clients and partners. The strong engagement and sense of community shared in this industry have been a constant inspiration […]

Industry Insights

Roanoke Appoints a New Regional Vice President and Head of Sales

Roanoke has appointed two key leaders to new roles, effective November 1, 2023. Please join us in congratulating Patrice Lafayette for accepting the position of Regional Vice President, Western Region, and Grant Goldsmith, who has accepted a position as Head of Sales. Patrice has been a steadfast leader of Roanoke’s Western Region for more than 17 years. She started her career as a Bond Account Manager and has held several roles during her tenure, including Bond Manager and Director of Sales for the Long Beach Sales team, and most recently, has been responsible for managing relationships with many of our […]

Industry Insights

2024 NCBFAA Scholarship & Application Announcement

Roanoke Insurance Group is delighted to once again sponsor  a $5,000 scholarship to students intending to join the trade industry. The National Customs Broker and Forwarder Association of America (NCBFAA) offers this $5,000 scholarship award yearly and will be presented to the winner at the NCBFAA annual conference in April 2024. The topic for this year’s scholarship will be “What are the key steps an organization should take to ensure that training, auditing, and engagement with a licensed customs broker and the sharing of industry information are effectively relayed to all employees, as well as properly documented to substantiate compliance […]

Events, Industry Insights

Roanoke is the leading provider of insurance and surety solutions for transportation and logistics providers. In fact, we are recognized as the most reliable source for U.S. customs bonds.

Contact

If you have any questions or need help, feel free to contact with our team.

800-762-6653

US CORPORATE HEADQUARTERS

1501 E. Woodfield Road

Suite 400W

Schaumburg, IL 60173


CANADA CORPORATE HEADQUARTERS

390 Bay Street

Munich Re Centre, 22nd Floor

Toronto, ON M5H 2Y2

Solutions that Go the Distance.

© 2024 Roanoke Insurance Group Inc.

Better Business Bureau logoCoverholder at Lloyd's logo