SPECIAL

THREATS TO CRITICAL INFRASTRUCTURE IN IRAN CONFLICT

| READ MORE →

Critical ports and maritime systems are under attack

Port of Baltimore (James Tourtellotte/CBP)

Maritime infrastructure is increasingly in the crosshairs of state-affiliated and independent nefarious cyber actors. Breaches of IT and OT systems can bring operations at critical ports to a standstill and even control the operation of vessels and equipment.

7/31/25

Ports must prepare now for ‘forever war’ with cyber threats, including infrastructure targeting from China

Vulnerable ports must prepare for “forever war” with malicious cyber actors who eye the sector – with frequently outdated systems supporting critical civilian and military operations – as ripe for attack, experts said at a Thursday event urging imperative action to better secure maritime infrastructure. The McCrary Institute for Cyber and Critical Infrastructure Security, which runs Threat Beat, and Booz Allen hosted the discussion to launch the report “Anchored in Zero Trust: Taking Action to Create Resilient U.S. Port Infrastructure” and spotlight its findings and recommendations.

Port of Baltimore (Photo by Bill McAllen/Maryland Port Administration)

7/29/25

Anchored in zero trust: Taking action to create resilient U.S. port infrastructure

Amid ongoing cyber intrusions targeting U.S. critical infrastructure, foreign adversaries are now extending their reach into U.S. ports, prompting urgent need for stronger maritime cybersecurity measures, according to a new report from Booz Allen and the McCrary Institute for Cyber and Critical Infrastructure Security. Read on for a summary of the report and why it demands immediate attention.

The Coast Guard Cutter Benjamin Bottoms pulls into the Port of Los Angeles channel on March 18, 2019. (Coast Guard photo by Petty Officer 1st Class Patrick Kelley)

7/21/25

Ports at risk from outdated policy and lack of ‘dedicated strategic attention’ to cyber threats, NATO report warns

Blurred lines of responsibility and policy that hasn’t kept up with the threat environment have put global ports under increased risk as the sector comes under “unprecedented cybersecurity threats from state-linked actors,” a new NATO report says. The Cooperative Cyber Defence Centre of Excellence policy briefunderscores that the current NATO Alliance Maritime Strategy, a 2011 document that analysts have called sorely outdated, lacks formalized frameworks “for engagement with commercial port operators, despite their critical role in maritime security and NATO logistics operations.”

A U.S. Coast Guard Station Los Angeles-Long Beach small response boat conducts maneuvers in preparation for their exercises as part of the port operations for Operation Mojave Falcon in the Port of Long Beach, California, on June 4, 2025. (U.S. Coast Guard photo by Petty Officer 3rd Class Richard B. Uranga)

7/17/25

New maritime cybersecurity regulations go into effect

New cybersecurity regulations for the maritime sector went into effect Wednesday for all U.S.-flagged vessels, offshore facilities such as energy projects and maritime transportation facilities handling certain volumes of cargo and ships. The Coast Guard released the Cybersecurity in the Marine Transportation System rule Jan. 17, requiring covered entities to create a cybersecurity plan, designate a cybersecurity officer to oversee plan implementation and updates and have a response plan with “instructions on how to respond to a cyber incident and identifies key roles, responsibilities and decision-makers amongst personnel,” among other measures.

Containers are lifted off a ship by cranes in the evening hours at the Port of Savannah, Ga., on July 29, 2021. (CBP photo by Jerry Glaser)

6/4/25

Maritime industry hit by more AI-assisted cyberattacks, ‘unprecedented’ attack speed

The maritime industry is weathering a surge in AI-assisted cyberattacks and “unprecedented” attack speed in which an adversary moves through a targeted network, according to a global maritime cyber threat report recently released by Marlink’s Security Operations Center. “The average breakout time — the period it takes for an adversary to move laterally within a network — has been significantly reduced, now taking less than an hour in most incidents, with some cases occurring in under a minute,” the report states. The cybercriminal ecosystem also has become more organized as they “increasingly turned to access broker services to gain entry into corporate environments.”

A U.S. Coast Guardsman assigned to Coast Guard Station Houston jumps onto the bow of a response boat-small while escorting the motor vessel Zhen Hua 29 down the Houston Ship Channel July 27, 2023. The Zhen Hua 29 crew delivered three neo-Panamax ship-to-shore cranes to Port Houston, the largest U.S. port for waterborne tonnage. (U.S. Coast Guard photo by Petty Officer 3rd Class Perry Shirzad)

5/20/25

Coast Guard calls for better OT security to mitigate ‘significant supply-chain risk’ posed by Chinese cranes

Coast Guard Cyber Protection Team (CPT) Operations noted a 71% year-to-year increase in cyberattacks that used stolen or compromised credentials while finding that “baseline cybersecurity posture has improved” across the marine transportation system (MTS), according to a new report from U.S. Coast Guard Cyber Command. The fourth annual Cyber Trends and Insights in the Marine Environment (CTIME) report said that “supply-chain risks and other observed vulnerabilities exist within ship-to-shore cranes manufactured in China” as better technology on vessels has expanded the attack surface. “While there are significant operational benefits, this creates cybersecurity risks that did not exist before,” the report states. “Cyberattacks impacting a company’s enterprise network are now far more likely to impact shipboard Information Technology (IT) systems and potentially impact vessel operations.”

Read More

White House’s state infrastructure cybersecurity initiative stalled

News | Water

Energy | Government | Healthcare | Transportation | Water

White House’s state infrastructure cybersecurity initiative stalled

Cybersecurity Dive • Jun 25, 2026

Nation-state actors cracked critical Australian infrastructure to ‘cripple it at a time of their choosing’

News | Energy

Nation-state actors cracked critical Australian infrastructure to ‘cripple it at a time of their choosing’

The Register • Jun 25, 2026

The U.S. Navy’s subsea rare earth vulnerability

Insight | Manufacturing

Defense Industry | Manufacturing

The U.S. Navy’s subsea rare earth vulnerability

War on the Rocks • Jun 25, 2026

Chinese AI agents could challenge air and space operations, planning

News | Defense Industry

Chinese AI agents could challenge air and space operations, planning

Air and Space Forces Magazine • Jun 25, 2026

China’s 360 says it has developed tools to match Anthropic’s Mythos

News | Information Technology

China’s 360 says it has developed tools to match Anthropic’s Mythos

Reuters via AOL • Jun 25, 2026

UK’s museums and galleries left vulnerable to cyber-attack and theft, MPs warn

News | Government

UK’s museums and galleries left vulnerable to cyber-attack and theft, MPs warn

The Guardian • Jun 25, 2026

News | Defense Industry

Commercial | Defense Industry | Government

Space sector faces 400% surge in cyberattacks amid Iran war, experts say

Via Satellite • Jun 25, 2026

News | Government

Energy Department launches Quantum Genesis initiative following Trump orders

FedScoop • Jun 25, 2026

News | Manufacturing

Government | Manufacturing

Lutnick privately warned top executives of possible action against imported Chinese robots

POLITICO • Jun 25, 2026

News | Government

Government | Information Technology

Anthropic’s Mythos model found vulnerabilities in classified U.S. government systems, official says

Associated Press • Jun 25, 2026