On the evening of 7 January, DNV’s ShipManager servers suffered a ransomware cyber-attack. The DNV experts shut down the servers immediately in response to the incident.
DNV said that all vessels can still use the onboard, offline functionalities of the ShipManager software, while other systems onboard the vessels are not impacted.
“The cyber-attack does not affect the vessels’ ability to operate,” pointed out the company, which assured that there are no indications that any other data or servers are affected.
Moreover, the server outage does not impact any other DNV services, according to a latest update.
“The Ship Manager IT-infrastructure is isolated from the rest of DNV’s servers and the forensic investigation conducted by DNV’s global IT security partners has confirmed that no lateral movement to other parts of the DNV IT-infrastructure was detected as part of the attack. Information like DNV user accounts, emails and all other services have not been affected by the incident,” said DNV in a statement.
Norwegian Police, in which the attack was reported, has informed relevant police agencies. The attack was also reported to the Norwegian National Security Authority, the Norwegian Data Protection Authority (DPA) and the German Cyber Security Authority.
Furthermore, all affected customers have been notified about their responsibility to notify relevant Data Protection Authorities in their countries and to consider relevant mitigating measures depending on the types of data they have uploaded to the system.
