Advertisement
Canada markets closed

  • S&P/TSX

    22,059.03
    -184.99 (-0.83%)
     

  • S&P 500

    5,567.19
    +30.17 (+0.54%)
     

  • DOW

    39,375.87
    +67.87 (+0.17%)
     

  • CAD/USD

    0.7332
    -0.0015 (-0.20%)
     

  • CRUDE OIL

    83.44
    -0.44 (-0.52%)
     

  • Bitcoin CAD

    79,816.75
    +2,331.92 (+3.01%)
     

  • CMC Crypto 200

    1,208.74
    +0.04 (+0.00%)
     

  • GOLD FUTURES

    2,399.80
    +30.40 (+1.28%)
     

  • RUSSELL 2000

    2,026.73
    -9.90 (-0.49%)
     

  • 10-Yr Bond

    4.2720
    -0.0830 (-1.91%)
     

  • NASDAQ

    18,352.76
    +164.46 (+0.90%)
     

  • VOLATILITY

    12.48
    +0.22 (+1.79%)
     

  • FTSE

    8,203.93
    -37.33 (-0.45%)
     

  • NIKKEI 225

    40,912.37
    -1.28 (-0.00%)
     

  • CAD/EUR

    0.6762
    -0.0030 (-0.44%)
     

Australia Struggles to Restart Port Operations After Cyberattack

Shamim Adam and Lynn Doan
·4 min read

(Bloomberg) -- DP World Plc struggled to restore operations at its ports in Australia after a cyberattack forced a mass closure, prompting government crisis meetings over the weekend and leaving tens of thousands of containers stranded ahead of the year-end holiday season.

Most Read from Bloomberg

Interruptions at four of the nation’s largest ports are expected to continue for several more days as DP World’s IT system remained disconnected from the internet since the hack on Friday, the government said Sunday. DP World Australia hasn’t received a ransom demand and doesn’t know which organization is responsible, the Australian Financial Review cited a top company official as saying.

ADVERTISEMENT

DP World, one of the world’s largest port operators, is the latest victim in a string of devastating, high-profile cyberattacks globally this year. Last week, Industrial & Commercial Bank of China Ltd. — the world’s biggest lender by assets — was struck by a ransomware attack that blocked some Treasury market trades from clearing and forced brokers to reroute transactions.

As more ports automate and move away from paper documentation, hackers pose a growing problem to the region’s shipping networks. Ransomware hackers install malware on their victims’ systems, holding them hostage until they receive payment. It wasn’t immediately clear whether ransomware was behind the attack on DP World.

“This incident is a reminder of the serious risk that cyber attacks pose to our country, and to vital infrastructure we all rely on,” Home Affairs Minister Clare O’Neil said Sunday on X, estimating DP World manages almost 40% of goods flowing in and out of Australia. “Managing cyber incidents of this kind is incredibly complex.”

Australia’s ports are critical to its economy, with the nation moving 98% of its trade by sea, according to Ports Australia, a leading industry body. A lot of what Australians use on a daily basis — from computers to clothes and medicine are imported — while the country is a key agriculture, energy and mining exporter.

Police are investigating the cyberattack. DP World is combing through its servers to find out where hackers may have been, the data they may have looked at or and moved, and if they left any malicious software, the Australian Financial Review reported, citing Nicolaj Noes who oversees the Oceania business.

Noes told the paper there was a possibility that alarms raised by the firm’s monitoring software gave it time to shut down its systems before data was stolen or locked up.

The disruptions at ports in Sydney, Melbourne, Brisbane and Fremantle also comes as the company is embroiled in an on-going strike by the Maritime Union of Australia over wages and better work conditions.

DP World said early Sunday that it has made “significant progress” in re-establishing freight operations, as teams tested key systems that are crucial for the resumption of normal operations and regular movement.

The company is collaborating with other ports and terminal operators to facilitate the flow of some freight, and working closely with the government and other stakeholders “to identify and retrieve sensitive inbound freight,” it said.

The government is assessing and developing its “understanding of the flow on impacts to Australia’s logistics system,” National Cybersecurity Coordinator Darren Goldie wrote on X. Goldie convened the National Coordination Mechanism over the weekend to bring together government agencies and maritime and logistics sectors as part of the response to the incident.

“While I understand there is interest in determining who may be responsible for the cyber incident, our primary focus at this time remains on resolving the incident and supporting DP World to restore their operations” and recommence cargo shipments, Goldie said.

The various agencies and departments “will work with DP World to ensure that government and industry stakeholders have appropriate situational awareness necessary to support the management of any disruption to Australia’s supply chains,” he said.

This isn’t the first time hackers have targeted major ports. In July, Japan’s biggest maritime port was hit by the notorious hacking gang Lockbit, a ransomware group with Russian ties that was also behind this week’s ICBC attack. A month earlier, several Dutch ports including Amsterdam and Groningen faced distributed-denial-of-service attacks, known as DDoS.

In 2021, South Africa’s port and rail company was struck by a ransomware attack that forced it to declare force majeure at container terminals and switch to the manual processing of cargo.

--With assistance from Karen Leigh and Sharon Klyne.

©2023 Bloomberg L.P.