Ransomware Disruption and Data Compromise at US Navy Shipbuilder: The Fincantieri Incident

Just over a year ago, in April 2023, Fincantieri Marine Group (FMG), a prominent U.S. Navy contractor and subsidiary of the Italian shipbuilding giant, Fincantieri, fell victim to a ransomware attack that led to significant operational disruptions and the leakage of sensitive data pertaining to 16,769 individuals.

The ransomware attack at Fincantieri not only encrypted files but also resulted in unauthorized access to systems within the FMG environment. The infiltration led to the exfiltration of personal data, including names and Social Security numbers of affected individuals, as acknowledged in breach notification letters sent by FMG. The regulatory filing in Maine, disclosed nearly nine months post-incident, shed light on the extent of the information compromised and indicated the provision of two years of free credit monitoring services for the victims.
It’s crucial to note the strategic importance of FMG in the national defense ecosystem. The U.S. Naval Institute reported that the shipyard is responsible for constructing the Navy’s Freedom-class Littoral Combat Ship and the Constellation-class guided-missile frigate.

According to the Green Bay Press Gazette, the shipyards in Marinette, Sturgeon Bay, and Green Bay, all under FMG, employ about 2,300 people. The compromised data has raised concerns regarding the personal information of these current and former employees, although FMG did not explicitly confirm if all affected individuals were part of their workforce.

The ransomware attack disrupted servers that provided information to manufacturing machines, immobilizing vital CNC (Computer Numerical Control) equipment for days. These machines are essential for the precision manufacturing of ship components, performing tasks such as welding and cutting based on digital instructions. The operational halt echoed the precariousness of cyberattacks on industrial control systems, highlighting the necessity for robust detection and response mechanisms.

#supplychaimhack #logisticshack #breach #ciso #ransomware #cyberattack

свернуть