Estimating economic losses from cyber-attacks on shipping ports: An optimization-based approach

Weaver, Gabriel A.; Feddersen, Brett; Marla, Lavanya; Wei, Dan; Rose, Adam; Moer, Mark Van

doi:10.1016/j.trc.2021.103423

Cited by 18 publications

(6 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Second, there is the possibility that ransomware attacks could cause public transit networks to incur financial losses. They may be compelled to pay a ransom to regain access to their systems, or they may incur costs related to recovering both their systems and their data [51]. The ransomware attack may also result in financial loss because of service disruptions, reputational harm, and a decline in ridership.…”

Section: Implications Of Ransomware Attacks On Transportation Systemsmentioning

confidence: 99%

Modus Operandi, Factors, Implications and Governance of Ransomware Attacks on Transportation Systems

Mohamad,

Yan,

Aziz

et al. 2024

Atlantis Highlights in Social Sciences, Education and Humanities

View full text Add to dashboard Cite

An efficient transportation system provides numerous benefits to people, businesses, and the larger community, including effective transportation of people and goods, enhanced economic growth, less congestion and travel time, improved access to education and healthcare and other benefits. The digital revolution has transformed the transportation sector, making it more efficient, sustainable, and customer centric. As public transit networks grow increasingly digital, so does the possibility of cyberattacks, one of the common attacks being ransomware, which could cause severe repercussions, leading to service disruptions and putting people at risk. Engaging in document review and paper analysis of past literature and government documents, this paper investigates the modus operandi, factors, implications, and governance of ransomware attacks on the transportation system. The study found various factors that motivate ransomware in transportation systems such as financial gain, service disruption, espionage, and political motivations. This further leads to various implications such as disruption of the normal operation of public transportation networks, financial losses, loss of vital data, harm to health and safety of users, degradation of the reputation of public transportation networks, as well as legal and regulatory repercussions. In Malaysia, ransomware is governed by Section 5 of Computer Crimes Act 1997 for unauthorised modification, Penal Code's Sections 378 for theft, 420 for deception, and 506 for criminal intimidation, as well as relevant provisions of the Personal Data Protection Act of 2010. The study is expected to contribute to the body of literature on ransomware and cybersecurity in the context of transportation systems.

show abstract

Section: Implications Of Ransomware Attacks On Transportation Systemsmentioning

confidence: 99%

Modus Operandi, Factors, Implications and Governance of Ransomware Attacks on Transportation Systems

Mohamad,

Yan,

Aziz

et al. 2024

Atlantis Highlights in Social Sciences, Education and Humanities

View full text Add to dashboard Cite

show abstract

“…Similarly, Progoulakis et al [52] underlined the emerging vulnerabilities due to the integration of IT and OT systems in global ports, championing the use of tools such as security risk assessment and bow-tie analysis to manage these cyber-physical security susceptibilities while emphasising the importance of regulatory compliance and continuous evaluation. Additionally, a research paper on the Maritime Transportation System highlights the use of empirical data and expert insights to develop a risk assessment approach, primarily focusing on understanding potential financial losses due to cyberattacks on port IT and OT systems [53]. These studies indicate that assessing and managing cyber threats is a prerequisite for the seamless functioning of smart port operations.…”

Section: Risk Assessmentmentioning

confidence: 99%

“…The literature on recovery planning underscores the significance of implementing effective processes and procedures to restore systems and assets impacted by cybersecurity incidents. Weaver et al [53] conducted a notable study assessing the effects of a cyberattack on the Maritime Transportation System (MTS). Their research examined the consequences of the attack while detailing recovery actions, involving a reshaping of resource allocation and movement security plans for vehicles, personnel, and missions.…”

Section: Incident Recovery Plan Executionmentioning

confidence: 99%

“…When taken as a whole, these studies offer insightful information that is helpful in creating strategies and plans for effective recovery. Although Koola et al's [77] emphasis on overall recovery strategies and the difficulties associated with data recovery sheds light on the complex aspects of cybersecurity incident recovery, Weaver et al's [53] optimization algorithm helps to tackle the nuances of resource allocation. When combined, these viewpoints offer a thorough outlook that can help organizations to improve their cybersecurity resilience.…”

Section: Incident Recovery Plan Executionmentioning

confidence: 99%

See 1 more Smart Citation

Comprehensive Analysis of Maritime Cybersecurity Landscape Based on the NIST CSF v2.0

Dimakopoulou,

Rantos

2024

JMSE

View full text Add to dashboard Cite

As technology advances and digitalization becomes more prevalent in the industry, the cyber threats to maritime systems and operations have significantly increased. The maritime sector relies heavily on interconnected networks, communication systems, and sophisticated technologies for its operations, making it an attractive target for cybercriminals, nation-states, and other threat actors. Safeguarding the maritime sector against cyber threats is crucial to ensuring the safety, integrity, and efficiency of maritime operations as well as for protecting sensitive information and global trade. The International Maritime Organization (IMO) has played a significant role in addressing cybersecurity issues, leading to the implementation of regulations aimed at risk reduction. This paper delves into the realm of cybersecurity within the maritime industry, offering an in-depth analysis of its various aspects through an extensive literature review based on the latest Version 2.0 of the National Institute of Standards and Technology’s (NIST) Cybersecurity Framework (CSF) functional areas. The primary objective is to establish a connection between research and NIST’s functions and categories, thereby presenting a nascent perspective and identifying existing security research gaps. Through the adoption of this strategic approach, the present paper aims to cultivate a forward-looking and proactive state of maturity in anticipation of future developments within the maritime industry. The outcomes of this research can provide valuable reference points in academic discourse, potentially leading to new hypotheses, and fuel innovation in developing advanced cybersecurity measures within the maritime industry.

show abstract

“…The digital transformation that different sectors have undergone leads to the incorporation of new technological advances and modes of operation in their infrastructures, for the maritime field this includes ships, ports and other facilities [1]. The above, allows cybercriminals to focus their efforts to carry out attacks against companies in the maritime industry, leading experts to consider cyber threats as a major obstacle to the digitalization demanded by the sector [2], at the same time, the digital attack surface is increasing and incidents can have serious consequences for important sectors with an impact at all levels [3].…”

Section: Introductionmentioning

confidence: 99%

Cybersecurity: a general framework in the maritime and military world

Martínez,

Guevara,

Sánchez

et al. 2023

cienc. tecnol. buques

View full text Add to dashboard Cite

In recent decades, the production of information in studies and research papers on the subject of cybersecurity have addressed the convenience of developing cyberdefense capabilities regardless of whether the scope is industrial or military, corporate or State. However, despite the generation of policies to contribute to the synergy of protection, cybersecurity threats continue to grow, affecting all organizations regardless of their size. The article deals with the existing guidelines, policies and environments within the international framework of cybersecurity in the maritime environment and identifies how these are taken through particular measures to the environments of military maritime units.

show abstract

Estimating economic losses from cyber-attacks on shipping ports: An optimization-based approach

Cited by 18 publications

References 21 publications

Modus Operandi, Factors, Implications and Governance of Ransomware Attacks on Transportation Systems

Modus Operandi, Factors, Implications and Governance of Ransomware Attacks on Transportation Systems

Comprehensive Analysis of Maritime Cybersecurity Landscape Based on the NIST CSF v2.0

Cybersecurity: a general framework in the maritime and military world

Contact Info

Product

Resources

About