The usage of Chinese-manufactured cranes is under discussion due to the potential risks they pose to national security and economic stability. These cranes are currently being used at multiple U.S. ports. To address potential malicious activities and strengthen cybersecurity resilience, the Biden-Harris administration has issued a comprehensive executive order.
Rising Cyber Attacks on Maritime Infrastructure
The executive order follows multiple reported incidents of cyberattacks on ports, vessels, and shipping companies. Unlike previous attacks, these recent events used advanced and evolving technologies, signaling a shift in tactics by cybercriminal groups. Many of these groups target the operational technology (OT) of maritime services, which controls and monitors physical devices and processes.
DHS and Coast Guard Gain Expanded Authority
The executive order empowers the Department of Homeland Security (DHS) to directly address maritime cyber threats. It also strengthens the authority of the U.S. Coast Guard to enforce cybersecurity measures for both vessels and waterfront facilities. Under the new rules, marine transportation systems—including critical control systems and networks—must follow minimum cybersecurity standards to reduce vulnerabilities.
New Cybersecurity Rules for Vessels and Facilities
With expanded powers, the Coast Guard can now regulate the movement of ships that pose cyber risks to maritime infrastructure. This includes conducting inspections of facilities and vessels to identify weaknesses and enforce corrective action. These measures aim to prevent cyber incidents that could disrupt port operations or national commerce.
Focus on Chinese Ship-to-Shore Cranes
One of the most significant aspects of the executive order is its focus on Chinese-manufactured ship-to-shore cranes. The Coast Guard is set to issue a Maritime Security Directive requiring owners and operators to secure cranes and associated IT and OT systems. This move directly addresses the cybersecurity risks linked to foreign-manufactured equipment.
Transportation Department Issues Cybersecurity Advisory
Alongside the executive order, the Department of Transportation released an advisory outlining cybersecurity best practices for the maritime industry. This advisory highlights risks tied to Chinese equipment and software while providing stakeholders with actionable guidance to improve their defenses.
Strengthening National Cybersecurity Resilience
The executive order highlights the administration’s broader commitment to safeguarding critical infrastructure from cyber threats. By focusing on vulnerabilities in the maritime sector, particularly those posed by foreign-manufactured technology, the Biden administration aims to enhance both national security and economic resilience. Partnering with trust consulting services and other expert cybersecurity advisors can help port authorities and maritime operators implement compliance measures effectively. Strengthened cybersecurity ensures the uninterrupted flow of commerce through U.S. ports, a vital part of the nation’s infrastructure.
