LRQA Nettitude Blog

Q&A With Our New Security and Network Solutions Account Manager | Nettitude

Posted by Nettitude on Dec 10, 2019 2:25:45 PM

We are pleased to announce the addition of Sarah Beresford, our new Security and Network Solutions Account Manager, within the Security and Network Solutions team. This new team delivers network consultancy, enterprise network solutions and network security solutions. Throughout the forthcoming months, Sarah will be working closely with our clients to assess the effectiveness of their current environments and advise on any appropriate action to ensure their business infrastructure is as safe as possible. Below is a further insight into how Sarah will be working within this new team.

Read More

Topics: Cyber Security, Nettitude, News, Security Blog, Security Testing, Cyber Security Blog, Download Area, Research & Innovation

How Cyber Secure is Equipment used within the Marine and Offshore Industry?

Posted by Nettitude on Dec 5, 2019 11:41:01 AM

By Joel Snape, Senior Security Researcher at Nettitude

Across most branches of industry, it is common to find security companies doing pro-active vulnerability research on equipment used in that industry and publishing details of the issue found after liaising with the vendor to ensure they are fixed. For example, in the wake of several large-scale internet attacks in 2016, researchers focused their attention on IoT devices with many reports surfacing of issues with devices such as CCTV cameras, home routers and network-connected storage devices.

In the maritime space, however, much less research has been publicly shared, predominantly because of the comparative cost and lack of accessibility of standard maritime equipment, although research has been carried out for several years, and some of the results have been publicly presented. Nettitude have pulled together highlights of the most relevant research in the public domain from a few key systems and highlighted the impact these vulnerabilities have within the marine and offshore sector, full details of which can be found in this report. So, what did the researchers find? Is the equipment currently used secure?

Read More

Topics: Cyber Security, Nettitude, News, Security Blog, Security Testing, Cyber Security Blog, Download Area, Research & Innovation

The Top 8 Cyberthreats to Marine and Offshore Organisations, Part 3: GPS Jamming, Ransomware, and APT40

Posted by Nettitude on Oct 23, 2019 6:13:46 PM

By Joel Snape, Senior Threat Researcher at Nettitude

October is Cyber Security Awareness Month, which is a great opportunity for companies and individuals to review and improve their cyber security processes and knowledge. At Nettitude, we will be releasing a new blog post every week of Cyber Security Awareness Month on our latest cyber security research, as well as our insights on the latest industry news and trends. We hope you’ll find them helpful, and as always please contact us with any questions.

+++

There is widespread recognition that the maritime industry is becoming increasingly vulnerable to cyberthreats as increased automation and new forms of connectivity are deployed to drive operational efficiencies. Although most cyberattacks can be prevented through basic security controls, more advanced attempts often slip through undetected, and the time from vulnerability identification to exploit tool creation is continually reducing. 

Read More

Topics: Cyber Security, News, Security Blog, Security Testing, Cyber Security Blog, Research & Innovation

The Top 8 Cyberthreats to Marine and Offshore Organisations, Part 2: Piracy, ECDIS Malware, and VDR Tampering

Posted by Nettitude on Oct 16, 2019 10:17:10 AM

By Joel Snape, Senior Threat Researcher at Nettitude

October is Cyber Security Awareness Month, which is a great opportunity for companies and individuals to review and improve their cyber security processes and knowledge. At Nettitude, we will be releasing a new blog post every week of Cyber Security Awareness Month on our latest cyber security research, as well as our insights on the latest industry news and trends. We hope you’ll find them helpful, and as always please contact us with any questions.

Read More

Topics: Cyber Security, Nettitude, News, Security Blog, Security Testing, Cyber Security Blog, Download Area, Research & Innovation

How to Detect a Cyber Security Incident

Posted by Nettitude on Oct 7, 2019 1:29:01 PM

October is Cyber Security Awareness Month, which is a great opportunity for companies and individuals to review and improve their cyber security processes and knowledge. At Nettitude, we will be releasing a new blog post every week of Cyber Security Awareness Month on our latest cyber security research, as well as our insights on the latest industry news and trends. We hope you’ll find them helpful, and as always please contact us with any questions.

Read More

Topics: Cyber Security, Nettitude, News, Security Blog, Security Testing, Cyber Security Blog, Download Area, Research & Innovation

The IMO Approach to Maritime Cyber Risk Management

Posted by Nettitude on Oct 2, 2019 5:48:16 PM

Companies need to be identifying and safeguarding against maritime cyber risks now to be ready for the first annual verification of the Company’s Document of Compliance after 1 January 2021.

The guidelines provide high-level recommendations on maritime cyber risk management to safeguard shipping from current and emerging cyber threats and vulnerabilities and include functional elements that support effective cyber risk management. The recommendations can be incorporated into existing risk management processes and are complementary to the safety and security management practices already established by IMO.

Read More

Topics: Cyber Security, Nettitude, News, Security Blog, Security Testing, Cyber Security Blog, Download Area, Research & Innovation

Lloyd's Register and Nettitude have Released a New Procedure for the Assessment of Cyber Security Controls for Ships and Ship Systems

Posted by Nettitude on Oct 2, 2019 5:36:50 PM

 

  • The new procedure is part of the “ShipRight Procedures” within LR Rules. Compliance with it makes a ship or a ship system eligible for a ShipRight Notation and/or a Descriptive Note.
  • In cases where a procedure is applied to a vessel outside of the classification regime, a certificate of compliance may be issued if appropriate.
  • The procedure was developed to provide an independent assessment of the effectiveness of cyber security controls within connected, integrated and internet-enabled systems and environments.

The development of Lloyd's Register's classification standards is a dynamic process. As the threats evolve, the standards adapt to ensure that safety, operability, performance and the security of vessels are kept to the desired level during their service life.

Read More

Topics: Cyber Security, Nettitude, News, Security Blog, Security Testing, Cyber Security Blog, Download Area, Research & Innovation

The Top 8 Cyberthreats to Marine and Offshore Organisations, Part 1: Phishing and Physical Infiltration

Posted by Nettitude on Sep 27, 2019 9:59:18 AM

Today’s cyberattacks occur 24x7. Although most of the generic attacks can be prevented through basic security controls, more advanced attempts often slip through undetected, and the time from vulnerability identification to exploit tool creation is continually reducing. Attacks that would have been classed as sophisticated 12 months ago now appear in commodity based malware that can be freely found on the dark web.

Read More

Topics: Cyber Security, Nettitude, News, Security Blog, Security Testing, Cyber Security Blog, Download Area, Research & Innovation

Securing Superyachts from Cyber Attack

Posted by Nettitude on Sep 24, 2019 12:43:04 PM

By Tom MacDonald, Managing Principal Security Consultant at Nettitude

For superyacht owners, ensuring the privacy of their personal and business affairs, as well as ensuring that physical security is never compromised, is of paramount concern. As these vessels become increasingly technologically advanced, cyber security becomes an increasingly crucial concern in order to protect owner privacy and safety. But what exactly are the cyberthreats that superyachts are facing, and how can owners and their crews protect themselves?

Read More

Topics: Cyber Security, Nettitude, News, Security Blog, Security Testing, Cyber Security Blog, Download Area, Research & Innovation

Is Email Putting Marine and Offshore Organisations at Risk?

Posted by Nettitude on Sep 20, 2019 3:30:26 PM

By Joel Snape, Senior Threat Researcher at Nettitude

Sometimes it feels like everything runs on email. We all know we get far too many each day, and crucial information is constantly being sent back and forth between individuals and companies. It has become so common that often we don’t stop to question whether it is the most effective way of carrying out a task, and whether it is exposing us to harm. One area in which email seemingly cannot be escaped is in communication with port authorities; this could be anything from arrival notifications to requests for bunkering, ballast discharge or diving. Although online reporting systems such as the CERS portal do exist, in many cases vessels still have to fill in a Word form or Excel spreadsheet and email it to the relevant authority. They may also then have to respond to follow up questions, or get more paperwork to fill out.

Read More

Topics: Cyber Security, Nettitude, News, Security Blog, Security Testing, Cyber Security Blog, Download Area, Research & Innovation

Subscribe Here!

About Nettitude

Nettitude is the trusted cybersecurity provider to thousands of businesses around the world. We stop at nothing to keep your data and business secure in an age of ever-evolving cyber threats.

Recent Posts

Posts by Tag

See all