News & Insights

Policy and Legal

Shipping Firm Hacking Is on the Rise

By NAM News Room


Incidents of high-value “man in the middle” cyber fraud have risen in recent years, taking a financial toll on global shipping (BBC).

What’s going on: “This type of fraud involves a hacker being able to intercept the communication between two parties, such as emails. The criminal then impersonates both in order to try to steal [global shipping firms’] sensitive information, such as log-in details or financial data, or even to take control of a company’s computer system.”

  • The number of attacks is increasing, having gone from 10 in 2021 to at least 64 in 2024, according to a research group at NHL Stenden University of Applied Sciences in the Netherlands.

Who’s doing it: “Many incidents are linked to the governments of four countries . . .  Russia, China, North Korea and Iran . . . Other attacks are purely for financial extortion, be it gangs from Nigeria or elsewhere.”

Why it’s important: “Law firm HFW’s data shows that such hacking is a growing problem for the shipping sector, both attacks on ships and ports. It says that between 2022 and 2023 the cost of dealing with an attack doubled to an average of $550,000.”

  • In those cases where the firms are unable to get rid of the cyber criminals and are forced to pay them, “HFW says the average cost of a ransom payment is now $3.2 million.”

A big target: About 80% of the world’s trade travels by ocean, and disruptions caused by hackers can make shipping firms’ costs increase enormously, “leav[ing] them short of capacity.”

Why it’s on the rise: The shipping industry’s increasing digitalization means “there are now simply more routes for hackers to use . . . while new communication technologies, Elon Musk’s Starlink satellite service, for example, have meant that ships have become more connected to the outside world. And therefore more hackable.”

  • Compounding the problem is that adoption of digital technologies in the sector often happens in “a piecemeal way, and involves technology that can go rapidly out of date”—in large part because firms can’t afford to have their ships out of commission long enough for updates.
  • Also, sensors used by ships to monitor emissions transmit data hackers can often access.

How it’s being addressed: “Ship management systems are now required—rather than simply advised— to include increasingly stringent cyber security measures, ranging from basic security hygiene to more technical operational and IT measures.”

NAM in action: The NAM supports legislation to crack down on supply chain theft and fraud and is working with industry partners to highlight the growing issue for policymakers.

View More