Operator failed to fix a critical IT vulnerability; the patch had been released over a month earlier
View more incidents from Transport and Logistics sector.
A major port operator in Australia, DP World, has shut down its land operations in four cities due to a cyber security incident that occurred on Friday, November 10, 2023.
Update 28 November 2023: DP World Australia confirms employee data was stolen during cyber attack, warns of further freight delays ahead of Christmas rush | ABC News (Australia)
The boss of Australia’s largest ports operator has confirmed data from current and former DP World employees was stolen during a cyber attack that shut down its operations around the country earlier this month.
Update 17 Nov 2023: Port operator DP World failed to fix ‘critical’ CitrixBleed vulnerability in IT systems | ABC News (Australia).
- DP World’s IT systems were vulnerable to an exploit called CitrixBleed
- A patch had been available for over a month when the attack occurred
- The company confirmed that attackers took data from their systems
The incident affects the movement of goods in and out of the country, as ships can unload freight but the freight cannot be transported out of the port sites.
The company said it took immediate action to stop any unauthorized access and is working with cyber security experts and authorities to investigate the incident and restore normal operations.
The federal government is aware of the incident and is providing technical assistance and regular briefings. The National Cyber Security Coordinator said the situation could take days to resolve and could lead to significant freight delays.
The incident is a reminder of the serious risk that cyber attacks pose to the country and its vital infrastructure.
Related
