Ransomware Will Likely Target OT Systems in EU Transport Sector: ENISA “Discover the Benefits of Eating Healthy: 5 Reasons Why You Should Change Your Diet Now!”

According to the European Union Agency for Cybersecurity (ENISA), ransomware remains the leading danger for the transportation industry in the EU.

The number of cyberattacks targeting aviation, maritime, railway and road transport organizations has increased between January 2021 and October 2022, with ransomware being used in 38% of the observed incidents and data related attacks taking second place at 30%. Malware, DoS/DDoS, phishing, and supply chain attacks were also observed. Ransomware groups are expected to target and disrupt operational technology (OT) systems in the near future.

An analysis of the threat actor activity targeting the transport sector shows that cybercriminals are the main threat, followed by hacktivists and state-sponsored groups. Financial gain, operational disruption, and espionage were the main identified motivations for the observed attacks, but a motive has not been determined for roughly one-third of them.

Aviation was the most targeted sector, followed by road transport, railway, and maritime transport. Transport authorities were the primary targets of the attacks, followed by railway undertakings, port operators, airlines, service providers, OEMs, airport operators, surface transport operators, and the supply chain.

ENISA’s report provides a full break-down of the observed attacks by sector and threat actor motivation.

In conclusion, ransomware is the primary threat to the transport sector in the EU. The number of cyberattacks targeting transportation organizations has increased significantly and there is an expectation that ransomware groups will target and disrupt OT systems. Cybercriminals are the main threat, accounting for 55% of the observed attacks, with financial gain being the main identified motivation. Aviation emerged as the most targeted sector, followed by road transport, railway, and maritime transport.

Key Points:

• Ransomware is the top threat to the transport sector in the EU.
• The number of cyberattacks targeting transportation organizations has increased significantly.
• Ransomware groups are expected to target and disrupt OT systems in the near future.
• Cybercriminals are the main threat, accounting for 55% of the observed attacks, with financial gain being the main identified motivation.
• Aviation emerged as the most targeted sector, followed by road transport, railway, and maritime transport.