The Wall Street Journal, citing informed sources, indicates that certain operations of ocean container line CMA CGM have been impacted by an alleged cyberattack (Paid subscription required). The carrier reportedly has been forced to shutdown portions of its operating systems in the carrier’s Asia-Pacific subsidiaries.
The encryption malware attack was discovered as a hacker contacted the carrier asking for ransom payment. The carrier issued a statement in the publication acknowledging the disruption to peripheral servers and that as soon as the security breach was detected, external access to some applications was interrupted to keep the virus from spreading.
The carrier indicated in a customer advisory that operations in its intra-Asia Chung Lie Navigation Co. and regional Australian National Line were unavailable. Reportedly brokers indicate that some offices in China, including Shanghai and Guangzhou, were affected and staff was requested to not utilize company computers.
Readers might recall that industry leader A.P. Moeller Maersk was among a number of select European businesses impacted in 2017 by a broad NotPetya malware attack that almost crippled the carrier. This attack specifically impacted the container related businesses of Maersk Line, APM Terminals and Damco with cascading system shutdowns paralyzing at least three shipping terminals. The cost of that attack was later reported by Maersk to be between $200 and $300 million.
China based Costco Shipping was also impacted by a cybersecurity attack in July 2018.
Obviously this development is still evolving and Supply Chain Matters will continue to monitor.