DNV, a Norwegian shipping classification society, has confirmed its systems were hit by a ransomware attack, affecting around 1,000 ships that rely on its technology.
The Oslo-based DNV said in a statement on Wednesday that its ShipManager software was targeted by file-encrypting malware on January 7, forcing the organization to shut down its servers. ShipManager is a fleet management software that allows DNV shipping customers to monitor the operational, technical and compliance features of a shipping fleet, and is used by more than 7,000 vessels owned by 300 customers, according to the company’s website.
DNV said that 70 customers operating around 1,000 vessels were affected by the attack, close to 15% of its total fleet.
In a statement given to TechCrunch, DNV spokesperson Margrethe Andersen confirmed that all impacted vessels can still use the onboard, offline functionalities of the ShipManager software. “The cyber-attack does not affect the vessels’ ability to operate,” said Andersen.
DNV also says it’s confident that other DNV servers have not been affected. However, when asked whether any data was compromised as a result of the attack, the company declined to comment. DNV also declined to say whether the attack would result in any delays for ships and their onboard cargo.
The company said it is cooperating with the police. “We cannot release information that could harm or delay the investigation,” the spokesperson said.
It is unclear how DNV was compromised, if the company received a ransom demand or who was behind the attack. TechCrunch checked the websites of several major ransomware groups but found no mention of DNV.
“DNV is working closely with global IT security partners to analyze the incident and ensure secure online operations as soon as possible,” the company said. “All affected customers have been advised to consider relevant mitigating measures depending on the types of data they have uploaded to the system.
The ransomware attack on DNV is one of many to have impacted the shipping industry in recent weeks. The Port of Lisbon, the third-largest shipping port in Portugal, was the target of a LockBit ransomware attack on Christmas Day.
THE THREAT OF Facebook account takeovers always looms, whether they’re caused by attacks that steal users’ login credentials or hacks that, say, compromise users’ email accounts and exploit the access to launch rogue account recoveries. At the same time, though, Facebook users need to be able to regain access to their accounts if they forget […]
With a major United States intelligence authority set to expire at the end of the year, and a congressional showdown brewing over whether or not to renew it, new details of an internal audit show that US Federal Bureau of Investigation (FBI) personnel have repeatedly conducted unlawful searches of data collected under the imperiled surveillance authority. Agents […]
Victims of the MegaCortex ransomware can now recover their encrypted files for free, thanks to the release of a new file decryptor. The free decryptor was built by cybersecurity firm Bitdefender and the EU’s No More Ransom initiative in cooperation with the Zürich Cantonal Police, the Zürich Public Prosecutor’s Office and Europol, which in September […]
Leave a Reply