Security Experts:

Connect with us

Hi, what are you looking for?


Malware & Threats

Ransomware Attack on DNV Ship Management Software Impacts 1,000 Vessels

Norway‎-based DNV said a ransomware attack on its ship management software impacted 1,000 vessels.

Vessels impacted by ransomware attack

Norway‎-based industrial risk management and assurance solutions provider DNV said a recent ransomware attack on its ship management software impacted 1,000 vessels.

DNV revealed on January 9 that its ShipManager software was targeted in a cyberattack on January 7, which forced the company to shut down associated servers.

In an update shared on January 17, the company clarified that it was targeted in a ransomware attack that impacted 70 of its customers and roughly 1,000 vessels.

“There are no indications that any other software or data by DNV is affected. The server outage does not impact any other DNV services,” DNV said in a press release.

It’s unclear which ransomware group is behind the attack and whether any data has been stolen. SecurityWeek has checked the websites of several major groups, but found no mention of DNV. However, threat actors typically name victims and threaten to leak stolen data only after initial negotiations have failed.

[ Read: The Vulnerable Maritime Supply Chain – a Threat to the Global Economy ]

DNV provides a wide range of services for the maritime, power, oil and gas, automotive and aerospace, food and beverage, and the healthcare industries. The company’s ShipManager software for the maritime industry is designed for ship management operations and ship design.

DNV says on its website that 300 shipping companies worldwide use its maritime software for more than 6,000 vessels.

SecurityWeek talked to several experts last year about cybersecurity in the maritime industry, including attack vectors, the potential effects of maritime supply chain damage, threat scenarios, attacker motivations, and what the industry should do to address existing problems.

Related: ​​Maritime Cybersecurity: Securing Assets at Sea

Related: US Releases Cybersecurity Plan for Maritime Sector

Related: UN Maritime Agency Hit by ‘Sophisticated Cyberattack’

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Expert Insights

Related Content


The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Malware & Threats

Microsoft plans to improve the protection of Office users by blocking XLL add-ins from the internet.


The Hive ransomware website has been seized as part of an operation that involved law enforcement in 10 countries.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.


CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.


US government reminds the public that a reward of up to $10 million is offered for information on cybercriminals, including members of the Hive...


Chinese threat actor DragonSpark has been using the SparkRAT open source backdoor in attacks targeting East Asian organizations.


Cybercriminals earned significantly less from ransomware attacks in 2022 compared to 2021 as victims are increasingly refusing to pay ransom demands.