Port of San Diego hit by a ransomware attack that took down systems

• The firm is currently investigating the incident to determine the kind of ransomware used in the attack.
• Alternative systems and procedures have been deployed so that services are not hampered

The Port of San Diego recently disclosed that it was hit by a cyberattack that impacted the firm’s IT systems. In an announcement, it revealed that an unknown ransomware variant was caused this incident. The firm is currently investigating the incident to determine the kind of ransomware used in the attack.

"The Port of San Diego continues to investigate a serious cybersecurity incident that has disrupted the agency's information technology systems, and the Port's investigation so far has determined that ransomware was involved in this attack," said the maritime firm in a report.

The firm is coordinating with several security experts and federal officers to minimize the impact of the attack on public systems.

“As previously stated, the Port has mobilized a team of industry experts and local, regional, state and federal partners to minimize impacts and restore system functionality, with priority placed on public safety-related systems,” the firm explained.

The investigation team is trying to estimate the scale of disruption caused by the attack. In addition, the port is developing a strategy to speed up the data recovery process. The firm is currently using alternative systems and procedures to ensure that services are not hampered.

“The Harbor Police Department continues to use alternative systems and procedures in place to minimize impacts to public safety. Port employees continue to have limited functionality which may have temporary impacts on service to the public, especially in the areas of park permits, public records requests, and business services,” said the firm.

The Port of San Diego is the second port to be attacked within a span of a week. On September 20, the Port of Barcelona suffered a cyberattack that resulted in the disruption of many of its servers. The recent attacks indicate that maritime firms may have recently become soft targets for attackers.