November 13, 2023 at 06:03AM
DP World, Australia’s largest container terminal and supply chain operator, experienced a cyberattack that caused disruptions at several major Australian ports. Land operations were shut down in Sydney, Melbourne, Fremantle, and Brisbane, but ships could still unload containers. The Australian government is assisting in restoring operations. While DP World has not disclosed details about the attack, there are conflicting reports on whether it was a ransomware attack or not. The primary focus now is resolving the incident and supporting DP World in restoring operations.
Key takeaways from the meeting notes:
1. DP World, Australia’s largest container terminal and supply chain operator, was hit by a cyberattack, resulting in significant disruptions at major Australian ports.
2. DP World disconnected its systems from the internet and shut down land operations at ports in Sydney, Melbourne, Fremantle, and Brisbane in response to the attack.
3. Ships can still unload containers, but freight cannot leave the port due to the incident. However, DP World can access sensitive freight at the ports, such as for medical emergencies.
4. The Australian government is assisting DP World in restoring operations.
5. DP World has not provided details about the attack, but sources indicate that it was a ransomware attack leveraging the CitrixBleed vulnerability.
6. Cybersecurity coordinator Darren Goldie stated that the interruptions are likely to last for days rather than weeks.
7. The focus is currently on resolving the incident and supporting DP World’s restoration efforts, rather than determining who is responsible.
8. Other incidents of cyberattacks on oil port terminals, cargo operations, and maritime facilities have been reported globally.