French liner giant CMA CGM has reported a breach of customer data
In a brief statement on its website, CMA CGM said it had suffered a leak of data on limited customer information involving first and last names, employer, position, email address and phone number, but added that IT teams have immediately developed and installed security patches.
While the container shipping line reported no operational impact on group activities, it asked customers to remain vigilant to any suspicious activity. Clients are cautioned to not share their account, password or any personal information and encouraged to check the authenticity of an email requesting to log in to the carrier’s platforms, especially if requested to reset a password.
Multiple media outlets have reported that hackers claiming responsibility for the data breach have said they have stolen the data for up to half a million of the carrier’s customers and are threatening to release the entire database within a week.
CMA CGM has not specifically mentioned the hackers on their digital outlets, but if the group has been the subject of a co-ordinated attack, it would be the second time in under a year. In September 2020, CMA CGM was the target of a ransomware attack that paralysed much of its IT infrastructure.
Cyber incidents and other IT issues are becoming more frequent in container shipping, raising concerns over whether shipping lines’ cyber security can keep up with a rapidly changing cyber threat landscape.
Over the last four years, AP Moller-Maersk, MSC, COSCO and CMA CGM have all suffered cyber attacks. In early July, Japan’s K-Line reported suffering its second cyber breach in four months.
CMA CGM said further questions may be directed to ho.datasecurity@cma-cgm.com
Readers seeking further information on cyber attacks in shipping can read Riviera’s cyber security coverage and news on cyber security developments in the shipping sector.
© 2023 Riviera Maritime Media Ltd.