Pierluigi Paganini
January 17, 2023
About 1,000 vessels have been impacted by a ransomware attack against DNV, one of the major maritime software suppliers.
DNV GL provides solutions and services throughout the life cycle of any vessel, from design and engineering to risk assessment and ship management. The Norwegian company provides services for 13,175 vessels and mobile offshore units (MOUs) amounting to 265.4 million gross tonnes, which represents a global market share of 21%.
The ransomware attack took place on the evening of January 7 and in response to the incident the company shut down the IT servers connected to the ShipManager system operated by the company.
DNV reported that there are no indications that any other of its software or data is affected by the security incident.
“DNV confirms its ShipManager software was victim of a ransomware cyber-attack on the evening of Saturday 7 January. DNV experts have shut down ShipManager’s IT servers in response to the incident. All users can still use the onboard, offline functionalities of the ShipManager software.” reads the notice published by the company.
The maritime software supplier launched an investigation into the incident with the help of global IT security partners, it is working to recover operations as soon as possible. The company also reported the incident to the Norwegian authorities.
According to the notice, 70 customers were impacted.
“DNV is communicating daily with all 70 affected customers to update them on findings of the ongoing forensic investigations. In total around 1000 vessels are affected,” continues the statement.
At this time the company has yet to disclose the family of ransomware that infected its systems.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
| [adrotate banner=”9″] | [adrotate banner=”12″] |
(SecurityAffairs – hacking, maritime)
[adrotate banner=”5″]
[adrotate banner=”13″]
