Results of the summarizing process for the arXiv paper: 2112.06545v1

Cyber attacks in the maritime sector have the potential to significantly impact the global economy. However, the severity of this threat is often underestimated due to many attacks going unnoticed or unreported. In order to shed light on this issue, a comprehensive overview of publicly known cyber incidents in the maritime sector from the past 20 years was conducted. The research uncovered a total of 90 publicly reported attacks and 15 proof of concepts. Additionally, interviews with five IT security experts from the maritime sector were conducted to provide further insight and perspective. These interviews confirmed that the research findings were comprehensive, but also highlighted the existence of a large number of unreported incidents. The experts emphasized that sharing threat information could potentially aid in attack prevention. Expanding on these findings, it is important to note that all companies can benefit from public information about cyber incidents by improving their own IT security measures. While there are concerns that attackers may also use these reports to target other companies using similar infrastructure, it is argued that such reports are more valuable in combating attacks rather than exacerbating them. This is because successful attackers can already potentially target any company utilizing similar infrastructure if vulnerabilities remain unfixed. The interviews revealed that awareness of cyber attacks has increased among large companies, but smaller companies still tend to consider themselves unattractive targets for attackers. However, regardless of size, many companies face a trade-off between investing in IT security and managing costs. Policy makers in various countries support this decision-making process through legislation requirements. Although some interviewees see Thread Information Sharing (TIS) as potentially helpful for attack prevention, there are reasons why this tool may not be widely adopted. Distrust among TIS participants and fear of negative publicity are cited as barriers to its implementation. Nevertheless, there are proposals to make TIS more attractive by ensuring participant anonymity. Overall, threats for participants in the maritime sector are increasing and cooperation among all parties involved is crucial for mitigating these risks. Attackers have already learned to collaborate and the number of attack vectors continues to grow.

• - Cyber attacks in the maritime sector can have a significant impact on the global economy.
• - The severity of this threat is often underestimated due to many attacks going unnoticed or unreported.
• - A comprehensive overview of publicly known cyber incidents in the maritime sector from the past 20 years uncovered 90 reported attacks and 15 proof of concepts.
• - Interviews with five IT security experts confirmed the research findings and highlighted the existence of a large number of unreported incidents.
• - Sharing threat information could potentially aid in attack prevention.
• - Companies can benefit from public information about cyber incidents by improving their own IT security measures.
• - Concerns about attackers using reports to target other companies are outweighed by the value of combating attacks through shared information.
• - Awareness of cyber attacks has increased among large companies, but smaller companies still consider themselves unattractive targets for attackers.
• - Companies face a trade-off between investing in IT security and managing costs, supported by legislation requirements from policy makers.
• - Distrust among participants and fear of negative publicity are barriers to widespread adoption of Thread Information Sharing (TIS).
• - Proposals to ensure participant anonymity may make TIS more attractive for implementation.
• - Cooperation among all parties involved is crucial for mitigating risks as threats and attack vectors continue to grow.

Summary1. Cyber attacks in the maritime sector can cause big problems for the world's economy. 2. People don't always realize how serious this threat is because many attacks go unnoticed or unreported. 3. In the past 20 years, there have been 90 reported cyber attacks and 15 proof of concepts in the maritime sector. 4. Experts agree with this research and say that there are even more attacks that aren't reported. 5. Sharing information about these threats could help prevent future attacks. Definitions- Cyber attacks: When someone tries to break into computer systems or networks to steal information or cause damage. - Maritime sector: The part of the economy that deals with activities related to ships, shipping, and ports. - Global economy: All the money and businesses around the world that affect each other. - Unnoticed: When something happens but people don't realize it or pay attention to it. - Unreported: When something happens but no one tells anyone else about it.

Cyber Attacks in the Maritime Sector: An Overview

The maritime sector is a vital component of the global economy, but it is also vulnerable to cyber attacks. These attacks can have serious consequences for companies and countries alike, yet many go unnoticed or unreported. In order to shed light on this issue, a comprehensive overview of publicly known cyber incidents in the maritime sector from the past 20 years was conducted. The research uncovered a total of 90 publicly reported attacks and 15 proof of concepts. Additionally, interviews with five IT security experts from the maritime sector were conducted to provide further insight and perspective.

Research Findings

The research findings confirmed that there are indeed many unreported incidents in addition to those that have been made public knowledge. The experts emphasized that sharing threat information could potentially aid in attack prevention by allowing companies to better understand their vulnerabilities and take appropriate measures against potential threats. It is important to note that all companies can benefit from public information about cyber incidents by improving their own IT security measures; even if attackers may use these reports as well, successful attackers can already potentially target any company utilizing similar infrastructure if vulnerabilities remain unfixed.

Awareness & Cost Trade-Offs

The interviews revealed that awareness of cyber attacks has increased among large companies, but smaller companies still tend to consider themselves unattractive targets for attackers. However, regardless of size, many companies face a trade-off between investing in IT security and managing costs – policy makers in various countries support this decision-making process through legislation requirements.

Thread Information Sharing (TIS)

Although some interviewees see Thread Information Sharing (TIS) as potentially helpful for attack prevention, there are reasons why this tool may not be widely adopted yet: distrust among TIS participants and fear of negative publicity are cited as barriers to its implementation. Nevertheless, there are proposals to make TIS more attractive by ensuring participant anonymity which could help encourage more widespread adoption of this tool for attack prevention purposes.

Conclusion

Overall, threats for participants in the maritime sector are increasing and cooperation among all parties involved is crucial for mitigating these risks – attackers have already learned how to collaborate effectively while the number of attack vectors continues to grow exponentially each year due largely in part because technology advances so quickly nowadays too! Publicly available information about cyber incidents should be used wisely by all stakeholders involved – both large corporations and small businesses alike – so they can better protect themselves against potential threats while also making sure not compromise their cost management goals either at the same time too!