Cyber-Attacks On Maritime Oil Tankers

Uploaded on 2019-05-15 in FREE TO VIEW, BUSINESS-Production-Energy

Four tankers have been attacked outside the strategically important Strait of Hormuz between the Persian Gulf and the Gulf of Oman. The vital waterway  provides the only sea passage from the Persian Gulf to the open ocean and is one of the world's most strategically important choke points. 

Local reports suggest the attackers jammed GPS to prevent the ships from evading attack. The oil tankers were all operating near the bunkering port of Fujairah located in the United Arab Emirates and the attacks took place over the weekend of 11th and 12th of May.

In a separete incident, two pump stations on Saudi Arabia’s most strategically important pipeline “were attacked by armed drones” causing a fire that was soon extinguished. Saudi Arabia’s energy minister, Khalid al-Falih, in a statement, called it “terrorism and sabotage"

Indications are that these incidents could develop to include cyber-attacks on vessels operating in the region.

Itai Sela, a former senior officer in the Israeli military and CEO of maritime cybersecurity firm Naval Dome commented:

“It is highly likely that vessels operating in high-risk areas could be targeted, systems hacked and GPS spoofed in order to render vessels immobile or re-directed as part of wider actions. There has been increased activity in the cyber domain over the last few months, which is very worrying.

"Shipowners with operations in the area must be vigilant and carry out inspections of all their PC-based navigation and machinery control systems. Ship operators should not allow crew members or technicians to plug-in USBs or external devices onboard or download maps and charts for specific areas, unless they absolutely need to do so. We also advised that operators check their insurance policies to ensure that OT systems are covered in the event of any cyber damage.”

A Saudi government statement blamed the Iranian-backed Houthis engaged in the civil war with the Saudi-backed government in Yemen. Iranian proxies are also fingered for the recent barrage of rockets and cyber attacks on Israel from Hamas-run Gaza..

US national security advisor John Bolton warned of “troubling and escalatory indications and warnings” regarding Iran.

Forbes:     Naval Dome:

You Might Also Read: 

Has President Trump Lost The Cyber Plot?

The Maritime Shipping Industry Should Be On Red Alert:

 

« Britain To Initiate Online “Porn Ban’
G7 To Simulate Cross-Border Cyber Attack »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

ExaGrid Systems

ExaGrid Systems

ExaGrid provides Tiered Backup Storage with a unique disk-cache Landing Zone, long-term retention repository, and scale-out architecture.

CloudDNA

CloudDNA

CloudDNA deliver solutions that enable users and devices to connect over high performance, secure, efficient, scalable cloud networks.

Splunk

Splunk

Splunk provide real-time Security Information & Event Management solutions for Enterprise Networks, Cloud and small-scale IT environments

LexisNexis Risk Solutions

LexisNexis Risk Solutions

LexisNexis Risk Solutions provides technology solutions for Anti-Money Laundering, Fraud Mitigation, Anti-Bribery and Corruption, Identity Management, Tracing and Investigation.

MNCERT/CC

MNCERT/CC

MNCERT/CC is the national Computer Emergency Response Team for Mongolia.

Infortec

Infortec

Infortec provide consultancy and solutions for the protection of digital information and the management of computer resources.

Cofrac

Cofrac

Cofrac is the national accreditation body for France. The directory of members provides details of organisations offering certification services for ISO 27001.

SafeHouse Technologies

SafeHouse Technologies

SafeHouse is a cloud-based, high-end cybersecurity platform that can secure and insure any device that is connected to it.

OXO Cybersecurity Lab

OXO Cybersecurity Lab

OXO Cybersecurity Lab is the first dedicated cybersecurity incubator in the Central & Eastern Europe region.

Knovos

Knovos

Knovos is a leading technology innovator developing solutions for automating, integrating, and innovating Information Governance.

Brookcourt Solutions

Brookcourt Solutions

Brookcourt Solutions delivers cyber security, network monitoring technologies and managed security services to help secure and protect your organisation’s critical infrastructure.

CACI International

CACI International

CACI is at the forefront of developing and delivering technological breakthroughs that transform and optimize government operations.

Crowe

Crowe

Crowe is a public accounting, consulting, and technology firm that combines deep industry and specialized expertise with innovation.

Wing Security

Wing Security

Wing fosters a stronger security culture by engaging SaaS end-users and enabling easy communication with security teams.

Access Venture Partners

Access Venture Partners

Access Venture Partners are an early stage VC firm investing in bold founders and helping every step of the way. Areas we give special focus to include cybersecurity.

CertX

CertX

CertX is a Swiss functional safety, cybersecurity and artificial intelligence certification body.