Shipping firm Maersk rebuilt its entire infrastructure in just ten days in order to recover from the NotPetya malware epidemic, the company has revealed.
Speaking at a panel as part of this week's World Economic Forum in Davos, the chairman of the logistics group Jim Hagemann Snabe said that the malware outbreak necessitated a full reinstallation of vast numbers of systems and applications.
"We basically found that we had to reinstall our entire infrastructure," he said. "We had to install 4,000 new servers, 45,000 new PCs and 2,500 applications - and that was done in a heroic effort over ten days."
"Normally - I come from the IT industry - you would say that would take six months; it took ten days. A heroic effort, and I can only thank the employees and partners we had on doing that."
The incident, he said, was "an important wake-up call". The company learned a number of important lessons, including the fact that Maersk was "basically average" when it came to cybersecurity. The company now has a plan to improve its security capabilities and transform them into a business asset, rather than a potential liability.
Snabe also spoke of the value of openness and collaboration in the area of cybersecurity, noting that what happened to Maersk can happen to other companies, and that a greater understanding of the problem is required.
The NotPetya outbreak had a huge impact on Maersk - the firm apparently lost between $250m and $300m as a direct result of the attack, and was forced to conduct its business manually without the aid of IT systems while the damage was repaired. Impressively, the company only saw a drop of around 20% in volume despite this.
-
Get ready for the rise of 'vibe crime'News Trend Micro is warning of a boom in 'vibe crime' - the use of agentic AI to support fully-automated cyber criminal operations and accelerate attacks.
-
The hidden cost of MFT vulnerabilitiesIndustry Insights The channel can solve the fundamental fragility in how organizations handle their most sensitive data transfers
-
15-year-old revealed as key player in Scattered LAPSUS$ HuntersNews 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
-
The Scattered Lapsus$ Hunters group is targeting Zendesk customers – here’s what you need to knowNews The group appears to be infecting support and help-desk personnel with remote access trojans and other forms of malware
-
Impact of Asahi cyber attack laid bare as company confirms 1.5 million customers exposedNews No ransom has been paid, said president and group CEO Atsushi Katsuki, and the company is restoring its systems
-
The US, UK, and Australia just imposed sanctions on a Russian cyber crime group – 'we are exposing their dark networks and going after those responsible'News Media Land offers 'bulletproof' hosting services used for ransomware and DDoS attacks around the world
-
A notorious ransomware group is spreading fake Microsoft Teams ads to snare victimsNews The Rhysida ransomware group is leveraging Trusted Signing from Microsoft to lend plausibility to its activities
-
Volkswagen confirms security ‘incident’ amid ransomware breach claimsNews Volkswagen has confirmed a security "incident" has occurred, but insists no IT systems have been compromised.
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
