DNV

DNV, headquartered in Norway and also known as DNV GL or Det Norske Veritas, operates as a major supplier of maritime software, primarily through its ShipManager fleet management system. This software provides operational and administrative tools for shipping companies globally. The scale of DNV's reach is evident from a January 2023 ransomware attack that impacted approximately 1,000 vessels by disrupting the servers hosting ShipManager. The incident targeted dedicated servers, prompting immediate shutdowns to contain the breach. Despite the server outage, the system's offline functionalities ensured that vessel operations continued unaffected, demonstrating the software's design for continuity. Forensic analysis later confirmed that the attack was isolated to those servers, with no compromise to other DNV IT infrastructure, user accounts, or unrelated systems.

DNV's response to the cyber incident underscores its methodical approach and regulatory awareness. The company collaborated with cybersecurity firms and reported the attack to Norwegian and German law enforcement and cybersecurity agencies. Affected customers were advised to evaluate mitigation measures for data uploaded to the platform and were reminded of their obligations to notify national data protection authorities. The reconstruction of the server environment to restore user access is still ongoing, highlighting the complexity of recovering from such an attack. This event occurred within a maritime sector increasingly targeted by ransomware, a trend noted by U.S. officials concerning port security risks. DNV's handling—preserving vessel-level operations during the incident while methodically addressing the cyber threat—reflects its competency in managing critical software services under duress. The incident also reveals the sector's vulnerability and the importance of resilient system design, as exemplified by ShipManager's offline capabilities.