French shipping group CMA CGM has faced its second cyber attack in less than a year. In the latest security breach, the company confirmed a leak of data on limited customer information.
The security breach was first detected during surveillance operations on the company’s Application Programming Interfaces (API). Customer information that was leaked included first and last names, employers, positions, email address’ and phone numbers.
“Our IT teams have immediately developed and installed security patches,” insisted the Marseille-based firm.
The company continued by telling its customers to “remain vigilant to any suspicious activity” and recommended the following practices to keep their accounts secure.
Advice from the group was as follows:
- Do not share your account password or any personal information. CMA CGM will never ask them from you.
- Always check the authenticity of an email requesting you to log in to our platforms (especially if requested to reset your password), even if it seems to be sent by the CMA CGM Group.
The last cyber attack that CMA CGM faced was in September 2020 and impacted their peripheral servers. As soon as the security breach was detected, external access to application was interrupted to prevent the malware from spreading, this meant that early into the attack, external access to CMA CGM IT applications were unavailable.
Cyber attacks like this are unfortunately common and a very dangerous threat to the industry. In 2017 A.P. Moller-Maersk also suffered an attack caused by Petya malware, leading to their IT system going down.