Threat Alert – Cyber Security

Computer Network Defence Ltd – Where does cyber security sit on the list of importance for superyachts?

In the ever-evolving landscape of maritime technology, cyber security has emerged as a critical concern for superyachts. These luxurious vessels, often equipped with state-of-the-art systems and cutting-edge technology, are not immune to the growing threat of cyber attacks.

The orchestration of a guest charter or principal’s arrival on these floating palaces is a complex, time-intensive process that is not only anticipated but demanded.

The current list of importance commences with the crew undergoing a rigorous selection process, enduring interviews, and security screenings before they can even set foot aboard the vessel. Off season, the yacht’s routine safety protocols take centre stage. Regular fire and medical drills are conducted to ensure that responses are not just efficient but also swift. The crew remains vigilant, performing thorough walkthroughs during watches, to maintain security and ensure perfection in every detail. As the yachts depart from shipyards, they undergo sea trials, a critical phase that tests and confirms their performance and seaworthiness.

Threat Alert - Cyber SecurityHowever, despite such detailed preparation, cybersecurity often remains an afterthought. A captain recently asked if he disconnected his internet, can he isolate himself and the yacht from a cyber attack, put simply; yes, he can. However lack of internet would cause major disruption to the charter and the guest experience.

It’s imperative that ETO/AVIT adopt robust cyber security measures to prevent isolation from the internet, which is now integral to the yacht’s operations.

As connectivity improves through the relatively recent adoption of Low Earth Orbit Internet over the more expensive VSAT connectivity, coupled with the vessel’s attractive yet often vulnerable operational technology becoming increasingly reliant on Internet connectivity, superyachts are becoming increasingly attractive as targets for cyber attacks.

Our Security Operations Centre in the Isle of Man (IOM) monitors our superyacht clients via the Osprey appliance and have noticed a growing need for vigilance in order to maintain effective cyber hygiene.

Ransomware attacks remain a primary attack vector, as they often rely on the fallibility of tired, and overworked crew, who may or may not have received adequate cyber security training.

Ransomware is where cyber criminals remotely seize control of data and devices and demand payment for release, it remains a serious threat within maritime. Sophos News reported that the average ransom payment has increased 5-fold over the past year, suggesting that the payments are being made by the victims, as time is of essence and privacy is paramount for these superyacht owners.

The exponential increase in threat which has been brought on by greater Internet connectivity, could be greatly reduced through the adoption of some basic cyber hygiene principles, whilst far from exhaustive, these are some of the basic elements:

Cyber Risk Assessment: The first stage in understanding your security posture, is a cyber risk assessment, where you ascertain the threat, assess your compliance with numerous cyber security controls, identifying any capability gaps and prioritise them according to severity of the risks.

Barrier: Having a good Next Generation Firewall or Unified Threat Management System at your Internet boundary coupled with antivirus on the endpoints will go a long way to preventing infection.

Patching: Applying updates and patches to systems is critical in removing vulnerabilities which could be exploited. There is also great value in conducting regular internal and external vulnerability scans, to identify vulnerabilities and misconfigured devices.

Segregation: As soon as a hacker gains access they will attempt to increase their privileges and then move laterally through the vessel. The network onboard can be segregated to contain the attacker without giving them visibility of the entire ship.

Cyber Security must not be ignored, simple and basic controls will counter many of the current threats.

For more details visit www.cndltd.com