By Craig Dancer ,
Transportation Practice Leader
15/07/2024 · 6 minute read
Cyberattacks have fast become one of the major threats faced by organisations across multiple industries. Ransomware, in particular, has seen a staggering increase in frequency and severity, fuelled by more sophisticated and persistent attackers.
As transportation companies — ranging from trucking to logistics firms — focused on digitising their operations, they too have become prime targets for threat actors. Ransomware attacks on logistics companies went up by a worrying 36% compared to the previous year, underscoring the need for robust cybersecurity measures.
These attacks can have overwhelming effects on companies, their partners, and their clients. For a fast-paced industry where every second counts, extended system outages can be crippling, leading to delays, lost business, and long-term reputational damage. The potential consequences of a cyberattack underscores the need for transportation companies to take immediate action to become cyber resilient.
Cyber threats are not a new phenomenon for transportation organisations. Back in 2017, the NotPetya attack paralysed the operations of an international shipping giant, with the major cyberattack believed to cost hundreds of millions of dollars.
Now, the industry is under increased risk of cyberattacks, mainly due to the tremendous digital evolution that transportation companies have gone through. The past years have seen heavy investment in digitally enabled platforms that would optimise transportation efficiencies. But in many cases, investments in cyber controls did not happen at the same fast pace, leaving those transportation companies vulnerable to cyberattacks.
Let’s take the example of a hypothetical medium-sized logistics company that has moved from manual operations to a digitised process that allows operators to identify the exact location of truckers and match them with cargo that needs to be picked up.
The new system, based on machine learning algorithms, is helping the company become more efficient and is earning it increased business. But when its systems get hacked, the company is unable to locate existing shipments and take on new business. Even a short downtime can cost prohibitive amounts in lost business.
And the company’s inability to book new business is only the tip of the iceberg. The tracking system that keeps tabs on temperature-controlled shipments is also down, and the company’s inability to continuously track perishable goods and ensure they are kept at an optimal temperature could mean that the whole shipment will be deemed spoiled.
Addressing the systems’ vulnerabilities and rebuilding the network could cost significant amounts. And companies that have fallen victim to a cyberattack will need to take steps to track down and eliminate any lingering malware in the system.
Finally, such cyber events can lead to loss of customer confidence and lingering reputational damage, including raising questions on the way the company is managing other risks.
With the transportation industry remaining a high profile target for cyber attackers, companies should consider taking steps to improve their cyber resilience through a three-pronged strategy to help you minimise your risk while preparing for a potential attack, responding during a cyber event, and recovering afterwards.
Logistics and transportation companies should consider the value of working with a trusted insurance broker to enhance their cyber resilience. A cyber insurance broker can help identify gaps in your insurance coverage and provide guidance on mitigating cyber risks specific to the logistics industry. By being risk aware and having the support of a broker, you can protect your business and work towards sustainable risk resilience.
Insurance is the subject matter of solicitation. For more details on the risk factors, benefits, exclusions, limitations please read the policy terms and conditions, sales brochure of the respective Insurance Product carefully before concluding the sale.
Prohibition of Rebates – Section 41 of the Insurance Act, 1938; as amended from time to time: No person shall allow or offer to allow, either directly or indirectly, as an inducement to any person to take or renew or continue insurance in respect of any kind of risk relating to lives or property in India, any rebate of the whole or part of the commission payable or any rebate of the premium shown on the policy, nor shall any person taking out or renewing or continuing a policy accept any rebate, except such rebate as may be allowed in accordance with the published prospectuses or tables of the insurer. Any person making default in complying with the provisions of this section shall be punishable with a fine which may extend to ten lakh rupees.
We do not guarantee the solvency of any insurer used for your requirements and you should note that the financial position of an insurer can change. The decision regarding suitability of any insurer or market rests with you. Compliance approval number- IND-20240807B