Lawyer Henry Clack has faced Nigerian criminal gangs many times.
Clack, a solicitor at London-based law firm HFW, represents shipping firms targeted by cyber attacks. He says Nigerian groups are the most common adversaries. They have launched several high-value “man-in-the-middle” frauds in recent years.
How hackers exploit communication
This fraud allows hackers to intercept exchanges between two parties. They impersonate both sides to steal login details, financial records, or full system access. Criminals then demand ransom to restore stolen data or relinquish control of systems.
HFW data reveals attacks on ships and ports continue to climb. Between 2022 and 2023, the average cost of an incident doubled to $550,000 (£410,000). If experts fail to expel hackers, ransom payments now average $3.2m.
Global trade at risk
Around 80% of world trade travels by sea. Disruptions raise costs and limit shipping capacity.
John Stawpert, environment and trade manager at the International Chamber of Shipping (ICS), warns that criminals and hostile states see shipping as a key target. “Cyber security is a major concern for shipping, given how interconnected the world is,” he says. “The sector ranks among the top 10 global targets for cyber crime. The impact of ransomware or disruption can be huge.”
Sharp rise in cyber incidents
Researchers at the Netherlands’ NHL Stenden University tracked maritime cyber incidents. Attacks rose from 10 in 2021 to at least 64 last year.
Jeroen Pijpker of the Maritime IT Security research group says many link to Russia, China, North Korea, and Iran. He recalls one case where attackers used Telegram to share target details, aiming to disrupt shipments bound for Ukraine.
Other gangs, including those in Nigeria, act mainly for financial extortion.
Digitalisation opens more doors
The shipping sector’s digital expansion has created new opportunities for hackers. Satellite systems like Starlink increase connectivity but also heighten risk.
A US Navy chief lost her role after installing an unauthorised satellite dish on a combat ship so officers could browse the internet.
Much of shipping’s digitisation remains fragmented and outdated. With an average vessel age of 22 years, frequent upgrades are costly.
Risks also include GPS jamming and spoofing.
“GPS spoofing provides false positions to navigation systems,” says Arik Diamant of security firm Claroty. “It can reroute vessels or push them into shallow waters.”
In May, the container ship MSC Antonia ran aground in the Red Sea after suspected spoofing. No culprit was named, but Houthi rebels have attacked other ships nearby. GPS interference in the Baltic has been blamed on Russia.
Costly defence measures
Anti-jam technology is available but expensive. Many operators cannot invest in it.
Emission sensors, which transmit data, also create further entry points for hackers.
Tighter global regulations
In 2021, the International Maritime Organization (IMO) introduced binding cyber rules within its safety management code.
HFW lawyer Tom Walters says vessels must now follow mandatory risk management standards. Defences include basic IT practices and advanced operational safeguards.
“I believe the industry is much stronger than six or seven years ago,” says Stawpert. “Awareness of cyber threats is growing and will continue to rise.”
Brief talks with hackers
Clack says talks with gangs are rare and concise. They mostly occur during ransomware negotiations. “It is often just one message a day, rarely longer than two sentences,” he explains.
