{"id":7898,"date":"2023-04-23T20:36:55","date_gmt":"2023-04-23T19:36:55","guid":{"rendered":"https:\/\/www.jumpsec.com\/?p=7898"},"modified":"2024-03-18T11:36:30","modified_gmt":"2024-03-18T11:36:30","slug":"ransomware-trends-the-european-transport-sector","status":"publish","type":"post","link":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/","title":{"rendered":"Ransomware trends: the European transport sector"},"content":{"rendered":"[vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][vc_column_text]As Aviation, Maritime, Rail and Road transport organisations are reportedly experiencing increased levels of\u00a0 ransomware activity across Europe as per ENISA\u2019s <a href=\"https:\/\/www.enisa.europa.eu\/news\/understanding-cyber-threats-in-transport\">recent report<\/a>, JUMPSEC analysts have combined the findings with JUMPSEC\u2019s attacker reported data scraped from a variety of sources (including the dark web) providing further context to the risks currently posed to European transport organisations. JUMPSEC\u2019s analysis expands ENISA\u2019s euro-centric view with UK data and perspectives.[\/vc_column_text][\/vc_column][\/vc_row][vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][vc_column_text]\n<h3>Introduction<\/h3>\n[\/vc_column_text][vc_column_text]In comparison to the <a href=\"https:\/\/www.jumpsec.com\/uk-ransomware-trends-lessons-for-2023\/\">13% jump<\/a> in total UK attack figures across all sectors from 2021 to 2022, European wide ransomware attacks reported against the transport sector specifically rose by 41% in 2022.<\/p>\n<p>There are a number of reasons why the transport sector might be experiencing higher than average levels of ransomware activity. Transport sector organisations have a distinctive profile from an attacker\u2019s perspective that make them a lucrative prospect which is worth understanding, particularly within the current threat landscape:[\/vc_column_text]<div class=\"nectar-fancy-ul\" data-list-icon=\"fa fa-dot-circle-o\" data-animation=\"true\" data-animation-delay=\"0\" data-color=\"accent-color\" data-spacing=\"15px\" data-alignment=\"left\"> \n<ul>\n<li><strong>High-impact attacks<\/strong> &#8211; The potential to cause serious business interruption for Transport sector organisations is immense \u2013 making airports, shipping ports, rail operators, and logistics companies prime ransomware targets, unlike other sectors which attackers initially found easy to breach but potentially difficult extort due an inability to cause meaningful disruption (i.e. construction, as per this JUMPSEC <a href=\"https:\/\/www.jumpsec.com\/uk-ransomware-trends-lessons-for-2023\/\">report<\/a>).<\/li>\n<li><strong>An extensive attack surface<\/strong> &#8211; Transport and logistics organisations are highly dependent on supply chain integration and play a key role within the end-to-end value chain. They also use specific technical equipment like satellite communication and IoT technologies which increase the potential attack vectors leveraged by cyber criminals. As detailed further in the \u2018Maritime\u2019 section of this report, JUMPSEC have also observed instances where interconnected shipping organisations were breached concurrently, illustrating the scope of supply chain risks to transport and logistics organisations.<\/li>\n<li><strong>Capitalising on existing disruption<\/strong> \u2013 Cyber criminals are known to strike at organisations which are already in a state of disruption to add to the chaos and maximise the potential for extortion. To name a few recent instances \u2013 the energy crisis, the post-Brexit lorry drivers\u2019 debacle, and the chaos experienced by thousands of passengers at airports last year. Overall shipping and delivery times have also fallen as capacity decreased by an <a href=\"https:\/\/www.spglobal.com\/marketintelligence\/en\/news-insights\/research\/container-shipping-supply-chains-will-remain-disrupted-well-into-2022\">estimated 10-15%<\/a> globally in 2022.<\/li>\n<\/ul>\n <\/div>[vc_column_text]Additionally, attacker motivations for targeting an airport or shipping facility can be more diverse than simple financial gain, given the strategic geopolitical disruption that can be achieved by \u2018nation state\u2019 threat actors, and ecologically motivated disruption caused by hacktivists (generally via DDoS attacks).<\/p>\n<p>Recent attacks reported against notable companies like Continental, Ferrari, Vauxhall, TAP Portugal, Direct Ferries, Swissport, UK-based Charles Kendall may have elevated the transport sectors\u2019 risk awareness.[\/vc_column_text][\/vc_column][\/vc_row][vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][image_with_animation image_url=&#8221;7905&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221;][vc_column_text]<span style=\"color: #df0a34;\"><strong>The top 10 most affected European countries were attacked from January 2021 to March 2023.<\/strong><\/span>[\/vc_column_text][\/vc_column][\/vc_row][vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][image_with_animation image_url=&#8221;7907&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221;][vc_column_text]<span style=\"color: #df0a34;\"><strong>Total sector-by-sector breakdown from January 2021 to March 2023.<\/strong><\/span>[\/vc_column_text][vc_column_text]However, perhaps the most interesting development has been the notable increase of ransomware attacks within specific Transport sub-sectors \u2013 particularly in Maritime and Aviation in 2022. Further details, along with additional threat actor context are provided below.[\/vc_column_text][\/vc_column][\/vc_row][vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][vc_column_text]\n<h3>Sector-by-sector breakdown<\/h3>\n[\/vc_column_text][vc_column_text]The scale and ambition of attackers targeting the transport sector has seen a significant increase from 2021-22. Whereas in 2021 a considerable proportion of reported attacks were directed at smaller sized national motor freight businesses (labelled \u2018Road (Logistics)\u2019 below), we have witnessed an increased number of attacks in areas like aerospace, airport authorities, airlines, high-end manufacturers, and larger international logistics organisations.[\/vc_column_text][image_with_animation image_url=&#8221;7911&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221;][vc_column_text]<span style=\"color: #df0a34;\"><strong>Graph showing the attacker reported breakdown of transport sectors (Aviation, Maritime etc.) across all European countries including the UK.<\/strong><\/span>[\/vc_column_text][vc_column_text]It should be clarified that broadly referring to the \u2018transport sector\u2019, or more specifically Aviation, Maritime, Rail, and particularly \u2018Road\u2019 as tightly defined sectors with common characteristics (as per the ENISA report) can be imprecise, and thus JUMPSEC have categorised victim organisations as:[\/vc_column_text]<div class=\"nectar-fancy-ul\" data-list-icon=\"fa fa-dot-circle-o\" data-animation=\"true\" data-animation-delay=\"0\" data-color=\"accent-color\" data-spacing=\"15px\" data-alignment=\"left\"> \n<ul>\n<li aria-level=\"1\"><strong>Logistics (General)<\/strong> refers to international or global logistics companies generally encompassing Road, Maritime, Aviation and Rail operations \u2013 as opposed to what we have termed \u2018Road (Logistics)\u2019 which generally refers to national haulage organisations.<\/li>\n<li aria-level=\"1\"><strong>Road (Manufacturers)<\/strong> has been split into separate sub-categories as manufacturing organisations have a separate threat profile and operational differences which are worth distinguishing.<\/li>\n<li><strong>Other miscellaneous sectors<\/strong> which are less frequently targeted yet notably distinct sub-sectors, such Aerospace, Local Authorities, and general Transport Manufacturing are also sub-categorised.<\/li>\n<\/ul>\n <\/div>[vc_column_text]As a general rule, LockBit ransomware (the most prevalent threat actor globally) is responsible for the majority of attacks against European transport organisations, however, this varies within some specific sub sectors such as Maritime for example.[\/vc_column_text][\/vc_column][\/vc_row][vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][image_with_animation image_url=&#8221;7915&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221;][vc_column_text]<span style=\"color: #df0a34;\"><strong>In contrast to other notable attackers of European transport organisations, Lockbit has now claimed 62% of transport sector attacks in JUMPSEC\u2019s initial ransomware figures for 2023.<\/strong><\/span>[\/vc_column_text][\/vc_column][\/vc_row][vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; top_padding=&#8221;3%&#8221; bottom_padding=&#8221;7%&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221; gradient_type=&#8221;default&#8221; shape_type=&#8221;&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][tabbed_section style=&#8221;vertical_scrolling&#8221; tab_color=&#8221;Accent-Color&#8221; vs_navigation_func=&#8221;default&#8221; vs_navigation_width=&#8221;narrow&#8221; vs_navigation_spacing=&#8221;15px&#8221; vs_navigation_mobile_display=&#8221;visible&#8221; vs_tab_spacing=&#8221;5%&#8221; vs_tab_tag=&#8221;h4&#8243; vs_cta_style=&#8221;see-through&#8221; vs_cta_bg_color=&#8221;default&#8221; vs_cta_heading_tag=&#8221;h6&#8243; vs_sticky_aspect=&#8221;default&#8221;][tab icon_family=&#8221;none&#8221; title=&#8221;Maritime&#8221; id=&#8221;1710761767789-9&#8243; tab_id=&#8221;1710761767789-0&#8243;][vc_column_text]\n<h3>Maritime<\/h3>\n[\/vc_column_text][vc_column_text]The Maritime sector has arguably produced the most insightful findings \u2013 as JUMPSEC have seen a notable uptake in attacks in the sector as 2022 progressed. Unexpectedly, given Lockbit\u2019s domination of the ransomware space, PLAY ransomware is the most prevalent threat to European Maritime organisations.[\/vc_column_text][image_with_animation image_url=&#8221;7917&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221;][vc_column_text]<span style=\"color: #df0a34;\"><strong>PLAY ransomware disproportionately targets European Maritime sector organisations compared to a generally lower volume of attacks when combining UK and Europe.<\/strong><\/span>[\/vc_column_text][vc_column_text]This category could perhaps more accurately be termed \u2018shipping logistics companies\u2019 or \u2018ports\u2019 which, despite the occasional yacht services company, is essentially what the vast majority of organisations affected by ransomware attacks in the sector are.<\/p>\n<p>As the sector experiences increasing attack rates, organisations should need no further motivation to build more effective security controls than the effects of NotPetya which crippled shipping giant Maersk in 2017 and cost the firm &gt;$300m. More recent targets within the Maritime sector include attacks on the Port of Houston and the Port of London Authorities, both of which are believed to have been politically motivated.<\/p>\n<p>JUMPSEC has also observed reported attacks on several Swedish shipping logistics companies, targeted by PLAY ransomware in a single week in December 2022, in what was potentially a coordinated supply chain attack. Similarly, three connected Greek and Italian shipping logistics companies were attacked by Conti and affiliated ransomware group Hive in early 2022 within a number of days, highlighting the heightened risks which may be posed by the interconnectivity of Maritime sector organisations.<\/p>\n<p>It is worth noting that Play ransomware is currently active against the Maritime sector and have to attacked and leaked data from Dutch Maritime firm <a href=\"https:\/\/www.securityweek.com\/ransomware-gang-publishes-data-allegedly-stolen-from-maritime-firm-royal-dirkzwager\/\">Royal Dirkzwager<\/a> as of March 30th 2022, while in January, Oslo-based DNV (one of the world\u2019s largest Maritime organisations and major software supplier for ships) were also <a href=\"https:\/\/www.supplychainbrain.com\/articles\/36436-cyber-attack-hits-1-000-merchant-ships-as-norway-firm-targeted\">breached<\/a>, meaning that current or potential supply chain partners may wish to take appropriate security precautions to protect their organisation.[\/vc_column_text][\/tab][tab icon_family=&#8221;none&#8221; title=&#8221;Aviation&#8221; id=&#8221;1710761767807-7&#8243; tab_id=&#8221;1710761767808-6&#8243;][vc_column_text]\n<h3>Aviation<\/h3>\n[\/vc_column_text][vc_column_text]Observable ransomware trends for European Aviation organisations have been broadly similar through 2021, 2022 and 2023 so far.<\/p>\n<p>In terms of specific threats to the sector, airline customer data and original equipment manufacturers (OEM) proprietary information are the prime assets targeted by attackers within Aviation. Fraudulent website impersonation, particularly of airlines companies, has also become a significant threat in 2022, while the number of ransomware attacks specifically affecting airports has also increased.<\/p>\n<p><strong>While scarcely targeted in 2021, attacker-reported ransomware incidents against European Aviation organisations increased by over 200% in 2022.<\/strong> Lockbit is marginally the most prevalent threat actor, along with a varied list of other groups similarly targeting the sector.[\/vc_column_text][image_with_animation image_url=&#8221;7921&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221;][vc_column_text]<span style=\"color: #df0a34;\"><strong>Aviation sub sectors affected by ransomware 2021-2023. The geo-political segment refers to attacks directly targeted at either Russian or Ukrainian Aviation organisations during the conflict.<\/strong><\/span>[\/vc_column_text][vc_column_text]Airlines experienced notable cyber attacks and data breaches in 2022, including TAP Portugal, SpiceJet and Pegasus, and Aviation technology firm Accelya who provide services to Delta, British Airways, JetBlue, United, Virgin Atlantic, American Airlines among others, also had sensitive data leaked by ransomware threat actors.<\/p>\n<p>To illustrate the impact to the Aviation \u2018Services\u2019 subsector \u2013 Swissport International was affected by a ransomware attack that had a severe impact on its operations, causing flights to suffer delays. The ransomware group responsible (BlackCat) then followed through on their threats by leaking data which included sensitive documentation, tax declarations, images of passports and ID cards and the personal information of interviewees.[\/vc_column_text][\/tab][tab icon_family=&#8221;none&#8221; title=&#8221;Road&#8221; id=&#8221;1710761767822-0&#8243; tab_id=&#8221;1710761767822-0&#8243;][vc_column_text]\n<h3>Road<\/h3>\n[\/vc_column_text][vc_column_text]The automotive industry, especially original equipment manufacturers (OEM) and tier-X suppliers, have been targeted by ransomware which has led to production disruptions in 2022. Data-related threats primarily targeting IT systems to acquire customer and employee data as well as proprietary information have also been common.[\/vc_column_text][vc_row_inner column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; text_align=&#8221;left&#8221; row_position=&#8221;default&#8221; row_position_tablet=&#8221;inherit&#8221; row_position_phone=&#8221;inherit&#8221; overflow=&#8221;visible&#8221; pointer_events=&#8221;all&#8221;][vc_column_inner column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; overflow=&#8221;visible&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; column_padding_type=&#8221;default&#8221; gradient_type=&#8221;default&#8221; offset=&#8221;vc_hidden-xs&#8221;][image_with_animation image_url=&#8221;7930&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221;][\/vc_column_inner][vc_column_inner column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; overflow=&#8221;visible&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; column_padding_type=&#8221;default&#8221; gradient_type=&#8221;default&#8221; offset=&#8221;vc_hidden-lg vc_hidden-md vc_hidden-sm&#8221;][image_with_animation image_url=&#8221;7925&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221;][image_with_animation image_url=&#8221;7926&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221;][\/vc_column_inner][\/vc_row_inner][vc_column_text]<span style=\"color: #df0a34;\"><strong>Road sector breakdown 2021 vs 2022. Interestingly for motor racing fans the company behind Silverstone, which falls outside usual categorisation, was also attacked in late 2022.<\/strong><\/span>[\/vc_column_text][\/tab][\/tabbed_section][\/vc_column][\/vc_row][vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][vc_column_text]Explaining the sub sector breakdown in further detail:[\/vc_column_text]<div class=\"nectar-fancy-ul\" data-list-icon=\"fa fa-dot-circle-o\" data-animation=\"true\" data-animation-delay=\"0\" data-color=\"accent-color\" data-spacing=\"15px\" data-alignment=\"left\"> \n<ul>\n<li aria-level=\"1\"><strong>Logistics \u2013<\/strong> Road logistics, often standard freight trucks and smaller national sized companies, were heavily targeted in 2022, however, attack rates have lessened somewhat in 2022 \u2013 perhaps due to a lack of profitability for attackers as smaller companies may not be sufficiently lucrative targets (as we have seen with attack rate in Education and Construction).<\/li>\n<li aria-level=\"1\"><strong>Manufacturers \u2013<\/strong> there is no record of Road transport manufacturers being targeted prior to 2022 and 2023, as lesser-known Road manufacturing\u00a0 companies and high profile organisations such as Ferrari, Continental, Vauxhall have been increasingly attacked.<\/li>\n<li aria-level=\"1\"><strong>Transport Authorities \u2013<\/strong> A number of regional Road authorities in Spain and Portugal were affected, however, as is the case with ransomware generally, public sector organisations are generally not frequently targeted (JUMPSEC data shows that &lt;8% of total UK ransomware reports are public sector).<\/li>\n<li><strong>Geo-political attacks \u2013<\/strong> While far less frequently targeted in geo-politically motivated attacks than Maritime or Rail for instance, there have been a number of transport sector attacks linked to hacktivism relating to the Ukraine war in 2022.<\/li>\n<\/ul>\n <\/div>[vc_column_text]A final caveat is the degree to which many companies are intertwined with Road transport in term of logistics \u2013 for example companies with in-house logistics operations which are not considered transport organisations (e.g. a supermarket or food retailer may have its own logistics operations or be heavily dependent on a close partner, yet would not be considered transport).<\/p>\n<p>As detailed in JUMSEC\u2019s recent ransomware <a href=\"https:\/\/www.jumpsec.com\/uk-ransomware-trends-lessons-for-2023\/\">trends report<\/a>, Retail &amp; Wholesale Trade organisations are some of the most frequently targeted, and hypothetically most lucrative sectors to target from attackers perspective, owing to the high proportion of large sized victims (&gt;\u20ac50m) within the sector.<\/p>\n<p>Retail &amp; Wholesale Trade organisations, and Transport &amp; Logistics organisations, should therefore be vigilant in relation to potential risks posed by the organisations within their supply chain.<\/p>\n<p><strong>Across all transport related subsectors, larger, more cyber-mature businesses should treat their supply chain (of typically smaller, less mature businesses) as a part of their own organisation\u2019s digital footprint and look to leverage their security resources to support and uplift the resilience of the entire supply chain \u2013 reducing the overall risk posed to their organisation in the process.<\/strong>[\/vc_column_text][\/vc_column][\/vc_row][vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/1&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][vc_column_text]\n<h3>Conclusion<\/h3>\n[\/vc_column_text][vc_column_text]JUMPSEC\u2019s data broadly aligns with ENISA\u2019s observation that the transport sector generally does not appear to have been targeted more frequently than other sectors in recent months. However, as detailed above, markedly increased attack rates within \u2018Transport\u2019 sub sectors, particularly Maritime and Aviation, and a general trend toward the attack of organisations with a more elevated profile and size appear to have become increasingly common over time.<\/p>\n<p>Threat actors often thrive on existing chaos and disruption. A final consideration for transport organisations will be how to approach the potential security risks that accompany increased interest in disruptive attacks, either from ecological hacktivists, state sponsored threat actors, or geo-politically motivated hacktivists who seek primarily to disrupt organisations, as well as the continued efforts of opportunistic ransomware groups attempting to capitalise on the significant scope for disruption which exists in the sector.[\/vc_column_text][\/vc_column][\/vc_row][vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; equal_height=&#8221;yes&#8221; content_placement=&#8221;top&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; top_padding=&#8221;2%&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221; gradient_type=&#8221;default&#8221; shape_type=&#8221;&#8221;][vc_column column_padding=&#8221;padding-2-percent&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color=&#8221;#f2f2f2&#8243; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;10px&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;2\/5&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; column_padding_type=&#8221;default&#8221; gradient_type=&#8221;default&#8221;][vc_row_inner equal_height=&#8221;yes&#8221; content_placement=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; text_align=&#8221;left&#8221; row_position=&#8221;default&#8221; row_position_tablet=&#8221;inherit&#8221; row_position_phone=&#8221;inherit&#8221; overflow=&#8221;visible&#8221; pointer_events=&#8221;all&#8221;][vc_column_inner column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; overflow=&#8221;visible&#8221; el_class=&#8221;circleimg&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/3&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; column_padding_type=&#8221;default&#8221; gradient_type=&#8221;default&#8221;][image_with_animation image_url=&#8221;10737&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221; mask_enable=&#8221;true&#8221; mask_size=&#8221;contain&#8221;][\/vc_column_inner][vc_column_inner column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; overflow=&#8221;visible&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;2\/3&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][vc_column_text]\n<h3 style=\"margin-top: 0px !important;\">Sean Moran<\/h3>\n[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][vc_custom_heading text=&#8221;Sean is a researcher and writer with a keen interest in geopolitics and its impact on the cyber security industry.&#8221; font_container=&#8221;tag:p|font_size:13|text_align:left|line_height:20px&#8221; use_theme_fonts=&#8221;yes&#8221;][\/vc_column][vc_column column_padding=&#8221;padding-2-percent&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color=&#8221;#f2f2f2&#8243; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;10px&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;2\/5&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; column_padding_type=&#8221;default&#8221; gradient_type=&#8221;default&#8221; offset=&#8221;vc_hidden-lg vc_hidden-md vc_hidden-sm vc_hidden-xs&#8221;][vc_row_inner equal_height=&#8221;yes&#8221; content_placement=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; text_align=&#8221;left&#8221; row_position=&#8221;default&#8221; row_position_tablet=&#8221;inherit&#8221; row_position_phone=&#8221;inherit&#8221; overflow=&#8221;visible&#8221; pointer_events=&#8221;all&#8221;][vc_column_inner column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; overflow=&#8221;visible&#8221; el_class=&#8221;circleimg&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/3&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; column_padding_type=&#8221;default&#8221; gradient_type=&#8221;default&#8221;][image_with_animation image_url=&#8221;7488&#8243; image_size=&#8221;full&#8221; animation_type=&#8221;entrance&#8221; animation=&#8221;None&#8221; animation_movement_type=&#8221;transform_y&#8221; hover_animation=&#8221;none&#8221; alignment=&#8221;&#8221; border_radius=&#8221;none&#8221; box_shadow=&#8221;none&#8221; image_loading=&#8221;default&#8221; max_width=&#8221;100%&#8221; max_width_mobile=&#8221;default&#8221; mask_enable=&#8221;true&#8221; mask_size=&#8221;contain&#8221;][\/vc_column_inner][vc_column_inner column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; overflow=&#8221;visible&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;2\/3&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][vc_column_text]\n<h3 style=\"margin-top: 0px !important;\">Matt Lawrence<\/h3>\n<p>Head of Defensive Security[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][vc_custom_heading text=&#8221;As Head of Defensive Security at JUMPSEC, Matt is responsible for shaping and leading the defensive operations team for JUMPSEC.&#8221; font_container=&#8221;tag:p|font_size:13|text_align:left|line_height:20px&#8221; use_theme_fonts=&#8221;yes&#8221;][\/vc_column][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; column_position=&#8221;default&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/5&#8243; tablet_width_inherit=&#8221;default&#8221; animation_type=&#8221;default&#8221; bg_image_animation=&#8221;none&#8221; border_type=&#8221;simple&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221;][\/vc_column][\/vc_row]\n","protected":false},"excerpt":{"rendered":"<p>[vc_row type=&#8221;in_container&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overflow=&#8221;visible&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; column_element_direction_desktop=&#8221;default&#8221; column_element_spacing=&#8221;default&#8221; desktop_text_alignment=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_backdrop_filter=&#8221;none&#8221; column_shadow=&#8221;none&#8221;&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8,22],"tags":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Ransomware trends: the European transport sector | JUMPSEC<\/title>\n<meta name=\"description\" content=\"Read about trends in the European transport sector. As an evolving industry there are always ransomware risks. Read the report now &gt;&gt;\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Ransomware trends: the European transport sector | JUMPSEC\" \/>\n<meta property=\"og:description\" content=\"Read about trends in the European transport sector. As an evolving industry there are always ransomware risks. Read the report now &gt;&gt;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/\" \/>\n<meta property=\"og:site_name\" content=\"JUMPSEC\" \/>\n<meta property=\"article:published_time\" content=\"2023-04-23T19:36:55+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-03-18T11:36:30+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.jumpsec.com\/wp-content\/uploads\/2022\/08\/JUMPSEC-2021-Retina.png\" \/>\n\t<meta property=\"og:image:width\" content=\"300\" \/>\n\t<meta property=\"og:image:height\" content=\"56\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Miles\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@JUMPSEC\" \/>\n<meta name=\"twitter:site\" content=\"@JUMPSEC\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Miles\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"15 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/\"},\"author\":{\"name\":\"Miles\",\"@id\":\"https:\/\/www.jumpsec.com\/#\/schema\/person\/8ff38b94f2229e35f6d8097f06a834fe\"},\"headline\":\"Ransomware trends: the European transport sector\",\"datePublished\":\"2023-04-23T19:36:55+00:00\",\"dateModified\":\"2024-03-18T11:36:30+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/\"},\"wordCount\":5265,\"publisher\":{\"@id\":\"https:\/\/www.jumpsec.com\/#organization\"},\"articleSection\":[\"Insights\",\"Ransomware\"],\"inLanguage\":\"en-GB\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/\",\"url\":\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/\",\"name\":\"Ransomware trends: the European transport sector | JUMPSEC\",\"isPartOf\":{\"@id\":\"https:\/\/www.jumpsec.com\/#website\"},\"datePublished\":\"2023-04-23T19:36:55+00:00\",\"dateModified\":\"2024-03-18T11:36:30+00:00\",\"description\":\"Read about trends in the European transport sector. As an evolving industry there are always ransomware risks. Read the report now >>\",\"breadcrumb\":{\"@id\":\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.jumpsec.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Ransomware trends: the European transport sector\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.jumpsec.com\/#website\",\"url\":\"https:\/\/www.jumpsec.com\/\",\"name\":\"JUMPSEC\",\"description\":\"Enabling Effective Cyber Security.\",\"publisher\":{\"@id\":\"https:\/\/www.jumpsec.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.jumpsec.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.jumpsec.com\/#organization\",\"name\":\"Jumpsec\",\"url\":\"https:\/\/www.jumpsec.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/www.jumpsec.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.jumpsec.com\/wp-content\/uploads\/2022\/08\/JUMPSEC-2021-Retina.png\",\"contentUrl\":\"https:\/\/www.jumpsec.com\/wp-content\/uploads\/2022\/08\/JUMPSEC-2021-Retina.png\",\"width\":300,\"height\":56,\"caption\":\"Jumpsec\"},\"image\":{\"@id\":\"https:\/\/www.jumpsec.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/JUMPSEC\",\"https:\/\/www.youtube.com\/channel\/UCpwVvJpDfFzBClzGhLUAZBw\",\"https:\/\/www.linkedin.com\/company\/jumpsec\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.jumpsec.com\/#\/schema\/person\/8ff38b94f2229e35f6d8097f06a834fe\",\"name\":\"Miles\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/www.jumpsec.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/38a56c5ce0c23b850cc8f3fbf7dbc48d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/38a56c5ce0c23b850cc8f3fbf7dbc48d?s=96&d=mm&r=g\",\"caption\":\"Miles\"},\"sameAs\":[\"https:\/\/www.jumpsec.com\"],\"url\":\"https:\/\/www.jumpsec.com\/guides\/author\/miles\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Ransomware trends: the European transport sector | JUMPSEC","description":"Read about trends in the European transport sector. As an evolving industry there are always ransomware risks. Read the report now >>","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/","og_locale":"en_GB","og_type":"article","og_title":"Ransomware trends: the European transport sector | JUMPSEC","og_description":"Read about trends in the European transport sector. As an evolving industry there are always ransomware risks. Read the report now >>","og_url":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/","og_site_name":"JUMPSEC","article_published_time":"2023-04-23T19:36:55+00:00","article_modified_time":"2024-03-18T11:36:30+00:00","og_image":[{"width":300,"height":56,"url":"https:\/\/www.jumpsec.com\/wp-content\/uploads\/2022\/08\/JUMPSEC-2021-Retina.png","type":"image\/png"}],"author":"Miles","twitter_card":"summary_large_image","twitter_creator":"@JUMPSEC","twitter_site":"@JUMPSEC","twitter_misc":{"Written by":"Miles","Estimated reading time":"15 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/#article","isPartOf":{"@id":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/"},"author":{"name":"Miles","@id":"https:\/\/www.jumpsec.com\/#\/schema\/person\/8ff38b94f2229e35f6d8097f06a834fe"},"headline":"Ransomware trends: the European transport sector","datePublished":"2023-04-23T19:36:55+00:00","dateModified":"2024-03-18T11:36:30+00:00","mainEntityOfPage":{"@id":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/"},"wordCount":5265,"publisher":{"@id":"https:\/\/www.jumpsec.com\/#organization"},"articleSection":["Insights","Ransomware"],"inLanguage":"en-GB"},{"@type":"WebPage","@id":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/","url":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/","name":"Ransomware trends: the European transport sector | JUMPSEC","isPartOf":{"@id":"https:\/\/www.jumpsec.com\/#website"},"datePublished":"2023-04-23T19:36:55+00:00","dateModified":"2024-03-18T11:36:30+00:00","description":"Read about trends in the European transport sector. As an evolving industry there are always ransomware risks. Read the report now >>","breadcrumb":{"@id":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.jumpsec.com\/guides\/ransomware-trends-the-european-transport-sector\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.jumpsec.com\/"},{"@type":"ListItem","position":2,"name":"Ransomware trends: the European transport sector"}]},{"@type":"WebSite","@id":"https:\/\/www.jumpsec.com\/#website","url":"https:\/\/www.jumpsec.com\/","name":"JUMPSEC","description":"Enabling Effective Cyber Security.","publisher":{"@id":"https:\/\/www.jumpsec.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.jumpsec.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/www.jumpsec.com\/#organization","name":"Jumpsec","url":"https:\/\/www.jumpsec.com\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.jumpsec.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.jumpsec.com\/wp-content\/uploads\/2022\/08\/JUMPSEC-2021-Retina.png","contentUrl":"https:\/\/www.jumpsec.com\/wp-content\/uploads\/2022\/08\/JUMPSEC-2021-Retina.png","width":300,"height":56,"caption":"Jumpsec"},"image":{"@id":"https:\/\/www.jumpsec.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/JUMPSEC","https:\/\/www.youtube.com\/channel\/UCpwVvJpDfFzBClzGhLUAZBw","https:\/\/www.linkedin.com\/company\/jumpsec\/"]},{"@type":"Person","@id":"https:\/\/www.jumpsec.com\/#\/schema\/person\/8ff38b94f2229e35f6d8097f06a834fe","name":"Miles","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.jumpsec.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/38a56c5ce0c23b850cc8f3fbf7dbc48d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/38a56c5ce0c23b850cc8f3fbf7dbc48d?s=96&d=mm&r=g","caption":"Miles"},"sameAs":["https:\/\/www.jumpsec.com"],"url":"https:\/\/www.jumpsec.com\/guides\/author\/miles\/"}]}},"_links":{"self":[{"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/posts\/7898"}],"collection":[{"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/comments?post=7898"}],"version-history":[{"count":32,"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/posts\/7898\/revisions"}],"predecessor-version":[{"id":10741,"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/posts\/7898\/revisions\/10741"}],"wp:attachment":[{"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/media?parent=7898"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/categories?post=7898"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jumpsec.com\/wp-json\/wp\/v2\/tags?post=7898"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}