AI technology is placing the maritime industry at greater risk of a cyber attack, reveals new data
The rapid adoption of AI technology in the global maritime industry is increasing vulnerabilities to cyber attacks, according to new findings. As companies enhance operations, recruitment, and maintenance processes through AI, they may be exposing themselves to swift and autonomous attacks that are nearly impossible to detect in time.
A recent Cydome security research paper highlights alarming trends: up to 60% of newly disclosed software vulnerabilities across shipping, onshore, and offshore operations are being weaponised within just 48 hours. The average timeframe for attacks has dramatically decreased; in 2018, it took 63 days from the publication of a security flaw to an actual attack, but by 2024, that figure is expected to drop to five days. Today, AI-driven tools have reduced the hacking window to less than 48 hours, with some systems targeted within a mere 15 minutes of a vulnerability being detected.
Tetsuji Madarame, a renowned expert in maritime logistics and former Head of Digital Transformation and Innovation at NYK Line, emphasizes the urgency of this situation: “As AI moves rapidly from a generative to agentic and physical model, expanding capabilities into autonomous navigation and optimal fleet operations, protecting AI-related assets must be a top priority.”
According to the Cydome report, 87% of organizations now consider AI-related vulnerabilities the fastest-growing risk, indicating a dangerous decline in traditional security response measures. While AI technology can streamline operations, it also enables hackers to execute “flawless deception.”
Theofano Somaripa, Group CIO at Newport S.A, a dry bulk operator, predicts that by 2026, the landscape of cyber attacks will shift focus from digitalization to a radical restructuring of business models through AI.
Currently, 83% of phishing emails utilize AI to target multinational crews in their native languages, thereby establishing trust more effectively. This development has resulted in a staggering 1600% increase in voice phishing (vishing), where AI replicates the speech patterns of C-suite executives to authorize fraudulent transactions. In one notable incident, a European energy major lost US$25 million when attackers used a deepfake audio clone of the company’s CFO to instruct staff to make an urgent wire transfer. The precision of the voice clone was so accurate that the transaction was completed without suspicion.
In another case, an AI-based email interceptor diverted a US$200,000 crew compensation payment to a criminal’s account instead of the family of a deceased seafarer. Additionally, a 195% increase in AI-driven identity fraud was reported when a firm unwittingly hired an operative who used an AI-enhanced photograph and a stolen identity, successfully passing four separate video interviews while evading standard verification processes.
Katerina Raptaki, IT Manager at Greek shipping company Navios, warns, “Shipping companies are deploying AI faster than they are defining cyber accountability. In 2026, the question after an incident won’t be ‘was the AI wrong?’ but ‘why was it trusted?'” This concern is compounded by the growing number of edge network devices—such as routers and firewalls—that are increasingly targeted. Cydome notes a staggering 800% increase in attacks on these digital gateways in 2025, with 20% specifically aimed at firewalls and VPNs.
The report highlights a striking incident in which the “wiping of the network edge” allowed hacktivists, known as Lab Dookhtegan, to disconnect a fleet of 116 tankers from the internet. This breach, involving the compromise of the infrastructure of the connectivity provider, resulted in a total loss of connectivity, raising significant operational and safety risks.
Øystein Brekke-Sanderud, Head of Maritime OT/ICS Security at NORMA Cyber, underscores a growing concern: “In 2026, the most significant cybersecurity risk will come from inside the perimeter. As organizations become more digitally integrated, insider risk—whether malicious, compromised, or accidental—will be one of the hardest challenges to detect and manage.” Brekke-Sanderud emphasizes that resilience will increasingly depend on early detection of subtle signals, rather than just defensive measures at the digital edge.
Panagiotis Anastasiou, Cyber Security Strategy Leader with Bureau Veritas Marine & Offshore, adds that while attacks are inevitable and becoming more sophisticated, the key differentiator for shipping companies will be their ability to quickly and safely detect, respond to, and continue operations in the face of such threats.
See also
Anthropic’s Claims of AI-Driven Cyberattacks Raise Industry Skepticism
Anthropic Reports AI-Driven Cyberattack Linked to Chinese Espionage
Quantum Computing Threatens Current Cryptography, Experts Seek Solutions
Anthropic’s Claude AI exploited in significant cyber-espionage operation
AI Poisoning Attacks Surge 40%: Businesses Face Growing Cybersecurity Risks
