In the digital age, ships are becoming as connected as the offices we work in on land. But with this connectivity comes a new set of risks, as highlighted in a recent study published in the *Journal of Marine Science and Engineering* (or *Zbornik radova Fakulteta pomorstva u Rijeci* in Croatian). The research, led by Marko Vukšić from the Department of Electrical Engineering, Automation and Computing at the University of Rijeka, sheds light on the vulnerabilities of onboard Wi-Fi networks and the potential for cyber threats, particularly when vessels are in port.
Vukšić and his team conducted a practical assessment of maritime Wi-Fi networks, focusing on two key threats: Man-in-the-Middle (MitM) attacks and rogue access points. These attacks can intercept and manipulate data transmitted over wireless networks, posing a significant risk to ship operations and data security. The study found that while at sea, the range and signal strength of Wi-Fi networks make such attacks less feasible. However, when ships are in port, the proximity of potential attackers and the density of wireless networks create a more vulnerable environment.
The researchers demonstrated this risk in a simulation near the Port of Rijeka. They set up a counterfeit Wi-Fi network, mimicking a legitimate one, and observed how easily standard crew devices could be tricked into connecting to it. This allowed the team to intercept network traffic and potentially access sensitive data. “Insecure configurations and common user behaviors were identified as key enablers” of these vulnerabilities, Vukšić noted.
The findings underscore the importance of robust cybersecurity measures in the maritime sector. Vukšić recommends a series of countermeasures, including network segmentation, encryption, crew training, and intrusion detection systems. These steps are crucial for building resilience and ensuring that the digital transformation of the maritime industry does not compromise security.
For maritime professionals, the study serves as a wake-up call. As ships become more connected, the potential for cyber threats grows. However, with the right strategies and technologies in place, these risks can be mitigated. The study also highlights opportunities for maritime sectors to invest in cybersecurity solutions and training, ensuring that they are well-prepared to face the challenges of the digital age.
In summary, Vukšić’s research provides valuable insights into the vulnerabilities of maritime Wi-Fi networks and offers practical recommendations for enhancing cybersecurity. As the maritime industry continues to embrace digital technologies, addressing these wireless vulnerabilities will be essential for safeguarding operations and data.