You are here
Two HK shipping lines hacked within five minutes of ‘casual’ online browsing
Two HK shipping lines hacked within five minutes of ‘casual’ online browsing
Sam Chambers April 2nd, 2019 https://splash247.com/two-hk-shipping-lines-hacked-within-five-minutes-o...
Shipping’s poor cyber defences have been displayed once again with news two Hong Kong shipping lines had their passwords hacked easily.
Shanghai-based consultant Captain Ozgur Dogan Gunes revealed to Splash it took just five minutes to access each company’s database while “casually” browsing online.
Gunes, a Turkish master mariner, revealed on Sunday on Twitter he had taken full credentials of two shipowners and dropped them a courtesy call to inform them.
“This would definitely damage reputation and operation if discovered by others. Trust they both will take this serious. This flaw is shockingly so common!,” Gunes noted on Twitter, explaining to Splash later that he had carried out the exercise to highlight shipping’s soft cyber resilience, rather than to profit from the hack.
The two companies, both small to medium sized bulk players, have yet to respond to Gunes.
Gunes, who has a software development background, said the flaws at both companies were “quite basic” and both companies had likely outsourced their IT to the same third party company.
“This is a common attack type or known vulnerability but some shipping companies still have not performed any update so that I can get their password easily,” Gunes warned.
Shipping’s weak cyber security has come under the spotlight in the last couple of years with some high profile cyber attacks. Both Maersk and Cosco lost millions of dollars when hacked in the last couple of years.
A survey of nearly 6,000 active seafarers carried out by consultancy Futurenautics in March last year saw 47% of repondents saying that they had sailed on a vessel that had been the target of a cyber attack. Moreover, only 15% of seafarers had received any form of cyber security training. Just as alarming only 33% of seafarers said the company they last worked for had a policy to regularly change passwords onboard and just 18% of those polled said the company they last worked for had a policy to change default equipment passwords onboard.
Breaking News
- 2 arrested for firing at Bollywood actor Salman Khan's home
- Urban contemporary radio station Wave 89.1 bids farewell after 23 years of broadcast
- Why are we so obsessed with the alleged homewrecker?
- NGCP extends red alert in Luzon grid, yellow alert in Visayas
- Tabogon accident: Truck helper killed after wing van falls into ravine
- UK parliament to debate law phasing out smoking
- PRO-7 to probe if part of P13B Batangas shabu is for Region 7
- Middle East conflict: Gulf states scramble to avert wider war
- UK to outlaw creation of sexually-explicit 'deepfake' images
- Kim Chiu, 'It's Showtime' searchee Oliver Moeller teased by Vice Ganda
Subscribe to The Seafarer Times RSS Feeds
User login
Who's online
There are currently 0 users online.