The Maritime Transportation System ISAC Releases Its 2023 Annual Report

Stakeholders Contribute a Record Number of Shares and Participate in an Expanded Maritime Cybersecurity Summit

WILMINGTON, DELAWARE, US, March 4, 2024 /EINPresswire.com/ -- On Friday, the nonprofit Maritime Transportation System Information Sharing and Analysis Center (MTS-ISAC) released its 2023 Annual Report. The MTS-ISAC, whose stakeholders’ operations span 6 continents and over 160 countries, focuses on maritime cyber threat information sharing to help provide early warning of the cyber-attacks taking place against the maritime community. The report highlights the continued progress its community of stakeholders made to improve cyber risk management across the MTS community, including key milestones and results achieved during its fourth year of operations.

The MTS-ISAC’s community minded stakeholders remain steadfast about the MTS-ISAC’s nonprofit mission and contributed nearly 2,300 shares in 2023. Sean Walsh, Senior Director, Information Security for Matson Navigation Company, Inc., MTS-ISAC board member and founder, stated, “While it is nearly impossible for companies to protect themselves against all cyber-attacks, having situational awareness of threat activity helps business take prudent measures.” Donald Brown, the Cruise Lines International Association’s Senior Vice President of Maritime Policy added, “When we partnered with the MTS-ISAC, our cruise line members instantly benefited from collaboration with other maritime stakeholders and visibility into cyber threat activity targeting the broader maritime sector.”

Continuing to serve as the maritime sector’s information exchange center of excellence, 2023 proved to be both a diverse and fast-paced year for cyber threat activity, as threat actors were motivated by geopolitical tensions due to wars and conflicts, with multiple countries aiding one side or the other either directly or by expressing their support. Criminal threat actors also targeted the sector with multiple ransomware campaigns, at a time when the maritime industry continues to modernize and rely on its third-party integrations. All making the delivery of early situational awareness of timely, actionable, and relevant threat cyber threat intelligence, best practices shared by subject matter experts, and virtual and in-person collaboration opportunities to be a difference as MTS-ISAC’s stakeholders continue to de-risk their operations.

Highlights from 2023 included:
• The MTS-ISAC’s Security Operations Center (SOC) received 2,284 intelligence shares for analysis and produced 1,330 MTS indicator bulletins and sixty-nine cybersecurity advisories. MTS stakeholders shared 828 phishing emails for analysis, twelve percent included a malware variant analyzed by the SOC. MTS executives were most frequently targeted by phishing emails followed by financial and IT employees.
• The Cruise Lines International Association joined the MTS-ISAC’s collection of “Information Exchanges (IX), and existing Information Exchanges grew their membership. The MTS-ISAC’s Critical Infrastructure Partners Information Exchange (CIP-IX) saw new members, including the Global Maritime Cybersecurity Consortium (GMCC), ABS Group, and Red Vector join alongside Cyware and Booz Allen Hamilton.
• Cyber threat and best practice awareness across the community grew due to the MTS-ISAC offering quarterly threat intelligence briefings and webinars on insider risk management, the escalating threat of ransomware, review of commodity malware and phishing challenges in the MTS, and others .
• MTS-ISAC working groups collaborated and delivered two guides on zero trust and effective rules for blocking phishing emails. The MTS-ISAC held an inaugural Capture the Flag event and brought together 80 players forming 32 teams across 8 countries to test their knowledge and enhance their skills by better understanding the methods used by attackers to achieve their goals.
• MTS-ISAC staff participated in events hosted by Carnival, The Global Maritime Cybersecurity Symposium, National Defense Transportation Association (NDTA), and The Cyber-SHIP Lab / IMO Symposium.
• From November 13-15, several of our stakeholders shared insights about their cybersecurity challenges and identified best practices during the 5th Annual Maritime Cybersecurity Summit in Miami, Florida. The Summit focused on delivering maritime cybersecurity practitioners with information and practical solutions to strengthen their core programs and reduce risk. A Practitioner Training Day, supported by the GMCC, provided practical insights on how to effectively apply and integrate cybersecurity best practices into a variety of program areas.
• The MTS-ISAC and its stakeholders also continue to work with a variety of international organizations, including the International Maritime Organization (IMO), International Association of Classification Societies (IACS), International Association of Ports and Harbors (IAPH), Baltic and International Maritime Council (BIMCO), and national government agencies, among others, to inform their cybersecurity guidelines and recommendations, proposed regulatory changes and implementation plans, and others on the realities, challenges, and practical aspects of international cybersecurity program efforts.

“The MTS-ISAC’s first four years was focused on creating a foundation of community, trust, and knowledge and information sharing for the maritime transportation system. While we are growing our capabilities, our programs, and our community, we remain committed to providing cyber threat intelligence and effective strategies to help our stakeholders de-risk their organizations” stated Scott Dickerson, the MTS-ISAC’s Executive Director. “Information sharing for the first two months of 2024 has increased by eight percent over the same time in 2023. We are grateful for all the support we have received since inception.”

The MTS-ISAC recently announced that their 2024 Maritime Cyber Security Summit will be held in Houston, Texas on November 19-20 with a dedicated training held on November 21. The call for speakers is open, and sponsors are available.

The MTS-ISAC Annual Report was issued on the heels of the U.S. White House releasing its latest initiative to “bolster cybersecurity of U.S. Ports” and the U.S. Coast Guard’s new Navigation and Vessel Inspection Circular (NVIC) 02-24: Reporting Breaches of Security, Suspicious Activity, Transportation Security Incidents, and Cyber Incidents.

About/Website/LinkedIn:
The Maritime Transportation System Information Sharing and Analysis Center (MTS-ISAC) promotes and facilitates maritime cybersecurity information sharing, awareness, training, and collaboration efforts between private and public sector stakeholders. The ISAC’s mission is to effectively reduce cyber risk across the MTS ecosystem through improved identification, protection, detection, response, and recovery efforts. The MTS-ISAC encourages everyone to download a copy of the latest Annual Report to better understand gains made by this important critical infrastructure sector. Also, the MTS-ISAC would like to extend a special thank you to our Board of Directors, stakeholders, Critical Infrastructure Partners IX, and interns. We appreciate everything you do to help make the sector more cyber resilient!

Scott Dickerson
MTS-ISAC
+1 469-667-6313
email us here
Visit us on social media:
LinkedIn