- Cybercriminals are employing increasingly sophisticated tactics, including AI-driven methods, to target the maritime industry with greater efficiency and impact.
- Marlink’s SOC monitored nearly 2,000 vessels over six months, detecting billions of security events and thousands of malware incidents, with email phishing remaining a key attack vector.
- The report warns of rising threats in 2025, including AI-powered cyberattacks, ransomware, supply chain vulnerabilities, and attacks on 5G, IoT, and operational technology infrastructures.
Marlink has published its Security Operations Centre (SOC) report for the second half of 2024, revealing a troubling rise in the sophistication and frequency of cyber threats targeting maritime users. The report shows that cybercriminals have enhanced their tactics, streamlined operations, and leveraged advanced technologies to strengthen their attack capabilities.
Extensive Monitoring and Cyber Incident Overview
Between July and December 2024, Marlink’s global SOC network monitored nearly 2,000 merchant and leisure vessels worldwide, recording an immense volume of security-related data. During this period, nine billion security events and 39 billion firewall events were registered. The report also highlights 718,000 security alerts and over 10,700 malware incidents, alongside the handling of 50 significant cyber incidents.
Email as a Primary Attack Vector
Phishing emails remain a leading avenue for cyberattacks, exploiting users with malware-laden attachments, deceptive links, and social engineering techniques. These methods continue to be highly effective for cybercriminals targeting maritime operations.
Rise of Generative AI in Cybercrime
A key trend identified in the report is the increasing use of generative artificial intelligence (genAI) by malicious actors. Cybercriminals have begun employing large language models (LLMs) to accelerate malware development, automate phishing campaigns, and refine social engineering tactics. This AI-driven evolution has fueled a surge in cyberattacks, with attackers creating sophisticated malicious scripts and exploits aimed at known vulnerabilities.
Emergence of an Organized Cybercriminal Ecosystem
The report also reveals a shift towards a more structured and business-oriented cybercrime ecosystem. Access brokers have grown in influence, doubling the market for network access over the past year. This development underscores how cybercriminals are increasingly relying on third-party services to infiltrate corporate and maritime environments more effectively.
Expert Insights and Future Outlook
Nicolas Furgé, President of Marlink Cyber, emphasized that the second half of 2024 marked a significant evolution in cyber threats, with attackers adopting more efficient and professional methods that intensify pressure on the maritime industry. Looking ahead, he anticipates the cybersecurity landscape will become even more complex in 2025, demanding stronger protections for both assets and personnel.
Recommendations and Anticipated Threats for 2025
Marlink stresses the urgent need for stricter enforcement of software policies, improved endpoint security, and heightened cyber hygiene awareness among maritime users. The report forecasts continued growth in AI-powered cyberattacks and ransomware, with a particular focus on exploiting vulnerabilities within supply chains to disrupt networks and operations. Furthermore, cybercriminals are expected to exploit weaknesses in 5G infrastructure to launch large-scale Distributed Denial of Service (DDoS) attacks, alongside an increased focus on targeting Internet of Things (IoT) and Operational Technology (OT) systems.
Ongoing Efforts to Enhance Maritime Cybersecurity
Marlink remains committed to protecting maritime clients through a robust network of SOCs that provide comprehensive IT and OT security solutions via its Marlink Cyber operation. Recently, Marlink launched its External Attack Surface Management (EASM) solution, designed to proactively identify and mitigate potential cybersecurity risks before they impact clients.
Did you subscribe to our Daily newsletter?
It’s Free! Click here to Subscribe!
Source: Ship Technology
