For the convenience of our readers, the Office of Port and Facility Compliance is sharing information recently released through the Cybersecurity and Infrastructure Security Agency regarding fixes for a critical vulnerability identified in Microsoft’s handling of certificates.
Forensic analysis is currently ongoing but the virus, identified as “Ryuk” ransomware, may have entered the network of the MTSA facility via an email phishing campaign. Read on for more details.
The Office of Port & Facility Compliance is reminding owners/operators to list the National Response Center’s 24-hour hotline, 800-424-8802, in their facility/vessel security plans for reporting maritime security and cybersecurity incidents to the Coast Guard.
In our second installment on cybersecurity and cyber risk management in observance of DHS’s National Cybersecurity Awareness Month, the Domestic Ports Division discusses the Area Maritime Security Committee as a valuable resource to combat cyber-related threats.
The campaign focuses on personal accountability and positive behavior when it comes to cybersecurity. The Coast Guard’s goal is to provide the maritime community with information, resources, and best practices to help protect their environments.
The exercise gave participants the opportunity to discuss the capabilities, resources, and procedures required to respond to cybersecurity threat scenarios that may occur during operations in the Gulf of Mexico Outer Continental Shelf.
Coast Guard Eighth District Commander Rear Adm. Paul Thomas joined Bureau of Safety and Environmental Enforcement Director Scott Angelle during this year’s Offshore Technology Conference in Houston, May 6-9. The session, moderated by Charlie Williams with Center for Offshore Safety, was part of COS’s Senior Regulatory Leadership Perspective series.
Sector Coordinating Councils are self-organized and self-governed councils that enable critical infrastructure owners and operators, their trade associations, and other industry representatives to interact on a wide range of sector specific strategies, polices, and activities.
The Office of Commercial Vessel Compliance issued Marine Safety Information Bulletin 04-19, “Cyber Adversaries Targeting Commercial Vessels,” to inform the maritime industry of recent email phishing and malware intrusion attempts that targeted commercial vessels. Cyber adversaries are attempting to gain sensitive information including the content of an official Notice of Arrival (NOA) using email addresses that pose as an official Port State Control (PSC) authority.