Mastodawn

An investigation in France is underway after malware was discovered on an Italian passenger ferry, prompting the arrest of a crew member and international coordination with Italian authorities.

Officials confirmed the malware was neutralized without operational consequences, but the case underscores growing concern around cyber risks in maritime and transport environments, where IT and operational technology increasingly intersect.

How should threat modeling evolve for vessels and transport infrastructure?

Source: https://www.bleepingcomputer.com/news/security/france-arrests-latvian-for-installing-malware-on-italian-ferry/

Share your insights and follow TechNadu for fact-driven InfoSec reporting.

#InfoSec #MaritimeCybersecurity #OTSecurity #CriticalInfrastructure #ThreatModeling #CyberRisk #TechNadu

Pen Test Partners May 30, 2025

🚫 No fire detection means no going to sea.
If you're running the Consilium Safety CS5000 fire panel on board, hardcoded credentials could let an attacker shut it down remotely.

As a result, if the system is taken offline, your vessel could be detained, lose its class certification, or be prevented from sailing altogether.

There is no patch available. The vendor has stated they won’t fix the issue unless cybersecurity was part of your original contract.

If your panel was installed before July 2024, it likely wasn’t designed with modern cybersecurity in mind.

Andrew Tierney explains how we discovered the vulnerability, its implications for operators, and the steps you can take to mitigate the risk.

📌 Read here: https://www.pentestpartners.com/security-blog/fire-detection-system-been-pwned-youre-not-going-to-sea/

#MaritimeCyberSecurity #VulnerabilityResearch #OTSecurity #FireDetection #CyberRisk

Pen Test Partners Oct 2, 2024

Are ships today more vulnerable to cyber attacks due to increased connectivity to their systems?

🚢 In our latest blog post, Andrew Tierney explains the potential risks associated with systems such as the Power Management System (PMS)⚡ and Integrated Alarm and Monitoring System (IAMCS), which are responsible for controlling the power generation and other machinery onboard.

⚠️ The consequences if these are hacked? Blackouts, increased crew workload, and potential loss of control during manoeuvres - especially risky in busy waterways. While hackers taking full remote control of a vessel is unlikely, disruptions to these systems are a genuine concern due to rising automation and inadequate network segmentation.

🛳️ Dynamic positioning vessels and cruise ships have even more complex, integrated systems. Inadequate network isolation among systems like dynamic positioning, safety management systems, and voyage data recorders can allow a hacker to impact multiple systems at once, making recovery far more challenging.

👉 Find out Andrew Tierney's full thoughts and breakdown on how cyber attacks could disrupt modern ship operations in our latest blog: https://www.pentestpartners.com/security-blog/cyber-threats-to-shipping-explained/

#MaritimeCybersecurity #PMS #IAMCS #NetworkSegmentation #OperationalRisk #CyberAwareness #CyberSecurity #ShipCyberSecurity #MaritimeSecurity

Cyber threats to shipping explained | Pen Test Partners

TL;DR Modern vessels are becoming increasingly connected. While it is unlikely that hackers could fully control a container ship remotely, they may be able to disrupt systems such as the Power Management System (PMS), leading to blackouts and associated loss of propulsion and steering. Although manual recovery is possible, it can be time-consuming and challenging,