Category: Cyber Awareness & Risk Management

Marine Transportation System (MTS) cyber spotlight

Editors note: This is the second in a series of articles addressing cyber risk management and cybersecurity within the Marine Transportation System (MTS). The maritime community is facing daily threats to their […]

Update to the Vessel Cyber Risk Management Work Instruction

The Coast Guard Office of Commercial Vessel Compliance has updated the Vessel Cyber Risk Management Work Instruction. The Work Instruction was updated to include a compliance timeline for Non Safety Management System vessels that are subject to the Marine Transportation Safety Act of 2002.

MSIB: Continued Awareness – Active Exploitation of SolarWinds Software

The Coast Guard Assistant Commandant for Prevention Policy has published Marine Safety Information Bulletin 03-21 “Continued Awareness – Active Exploitation of SolarWinds Software”.

Gulf of Mexico AMSC conducts insider threat and cybersecurity exercise

The Gulf of Mexico Area Maritime Security Committee (AMSC) conducted its annual security exercise from New Orleans, Louisiana, on November 17, 2020. Due to the restrictions on in-person gatherings due to COVID-19, the exercise was held via virtual online conference.

Area Maritime Security Committees 2019 Annual Report – Challenges, Suggestions, Accomplishments, and Best Practices

The Office of Port and Facility Compliance is pleased to announce the publication of a consolidated report on the status and work completed in 2019 by Area Maritime Security Committees (AMSCs).

MSIB: Malicious email spoofing incidents

The Coast Guard Assistant Commandant for Prevention Policy has published MSIB 19-20 “Malicious email spoofing incidents” to highlight several recent cyber events involving increasingly sophisticated malicious email spoofing techniques within the Marine Transportation System (MTS).

Urgent Need to Protect Operational Technologies and Control Systems

The Coast Guard Assistant Commandant for Prevention Policy has published MSIB 18-20 “Urgent Need to Protect Operational Technologies and Control Systems” to reiterate the need for vigilance against cyber threats to internet-accessible operational technology.

%d bloggers like this: