
Nigerian cybercriminals are increasingly targeting the global shipping industry, with law firm HFW warning that organized gangs from the country are behind a string of multimillion-dollar attacks.
Lawyer Henry Clack, a solicitor at HFW, says the firm has seen repeated cases where Nigerian hackers intercepted email communications between shipping firms and their clients, carrying out so-called “man-in-the-middle” frauds.
“Of the cases which HFW have been involved in, the most common counterparties that we’ve encountered are Nigerian organized criminal organizations,” he says.
“They have been responsible for perpetrating several high-value ‘man-in-the-middle’ frauds in recent years.”
Between 2022 and 2023, the average cost of handling a maritime cyberattack doubled to $550,000, according to data from HFW. It also says the average ransom payment is now $3.2 million.
In 2017, researchers at Secureworks identified a Nigerian cybercrime gang known as GOLD GALLEON, solely focused on launching attacks against the maritime industry. Between June 2017 and January 2018, the threat actors “attempted to steal a minimum of $3.9 million from maritime shipping businesses and their customers”.
Increased Reliance on Technology
The shipping industry’s reliance on digital systems and satellite connections has widened the attack surface. “Cyber security is a major concern for the shipping industry, given how interconnected the world is,” says John Stawpert of the International Chamber of Shipping (ICS). “Shipping has been listed as one of the top 10 targets for cyber criminals globally.”
Research shows the problem is accelerating. According to the Maritime IT Security group at NHL Stenden University in the Netherlands, the number of recorded shipping cyber incidents increased from 10 in 2021 to more than 60 in 2023.
While state-backed actors in Russia, China, Iran, and North Korea have also been linked to incidents, financially motivated groups from Nigeria remain among the most active.
Attacks range from ransomware and email compromise to GPS spoofing—where false location data is fed into a vessel’s navigation systems, potentially driving ships off course. In one widely reported case, a cargo ship ran aground in the Red Sea after suspected GPS tampering.
International regulators have begun tightening rules. The International Maritime Organization (IMO) introduced binding cyber risk management requirements in 2021, forcing shipping companies to integrate security controls into their safety systems. Yet experts caution that outdated vessels, some more than 20 years old, remain especially vulnerable.
With 80% of global trade moving by sea, the stakes remain high. For now, Nigerian hackers appear determined to keep the maritime sector in their sights, turning global shipping lanes into lucrative hunting grounds.
Source: BBC