The 2024 CTIME report underscores how maritime cybersecurity has never been more critical for the United States’ Marine Transportation System (MTS). Enhanced satellite connectivity drives operational efficiency at sea but simultaneously exposes vessels and port facilities to a wider array of cyber threats.
Emerging Cyber Threats in the MTS
Coast Guard Cyber’s fourth annual Cyber Trends and Insights in the Marine Environment (CTIME) highlights several pressing vulnerabilities:
- IT/OT Convergence: Ships, machinery, and shore-side systems are increasingly integrated. A single breach on an onshore network can cascade into a physical attack at sea.
- Ship-to-Shore Crane Risks: Approximately 80 % of container-loading cranes in American ports are manufactured by Zhenhua Heavy Industry (ZPMC), posing potential backdoor access for malicious actors.
- Cloud Infrastructure Incidents: 40 % of Incident Response missions in 2024 involved attempts to compromise cloud services, due to unclear shared-security responsibilities with cloud providers.
- Nation-State Activity: Attacks from groups like Salt Typhoon continue to rise, targeting critical MTS infrastructure.
Strengthening Cyber Defenses
Despite these threats, the 2024 edition of the CTIME report offers encouraging trends and best practices:
- MFA Adoption: Widespread implementation of multi-factor authentication has substantially reduced successful brute-force and phishing attacks.
- Phishing Mitigation: Technical improvements, coupled with user-awareness training, led to a drop in credential-based compromises (which still account for 42 % of breaches).
- MSSP Engagement: For the first time, 73 % of Coast Guard mission partners outsourced monitoring to Managed Security Service Providers, bolstering 24/7 threat detection.
- CPT Missions Up: Coast Guard Cyber Protection Teams conducted a record 42 marine-environment missions, revealing default credentials on two-thirds of inspected systems—a 71 % year-over-year increase in credential misuse.
How CGCYBER Operates
The CTIME report is crafted by Coast Guard Cyber Protection Teams and the Maritime Cyber Readiness Branch, drawing on 2024 operations, technical exchanges, and industry engagements. Today, three active-duty and one reserve CPTs collaborate with Area, District, and Sector Commanders—each supported by an MTSS-C advisor—to assess, emulate, and remediate cyber risks throughout the MTS.
Conclusion
The 2024 CTIME report confirms that robust maritime cybersecurity practices—from MFA and phishing defence to MSSP partnerships—are essential to safeguard the United States’ Marine Transportation System. By staying vigilant against evolving cyber trends and enforcing strict IT/OT separation, operators can ensure secure and resilient maritime operations.
