Dynacom Tankers

In January 2014, the MT Kerala, a vessel operated by Dynacom Tankers, fell victim to a sophisticated pirate attack off the coasts of Angola and Nigeria. The pirates disabled the ship’s AIS and communication systems, rendering it untraceable via satellite or shore-based monitoring. They also obscured identifying markings (name, IMO number, and stack) to evade detection. The primary objective was fuel theft, executed through three separate ship-to-ship transfers, resulting in the loss of 12,271.5 tonnes of oil cargo valued at $10 million. The incident exposed critical vulnerabilities in maritime security, with the Angolan Navy initially suggesting the hijacking was staged—a claim later disproven. The attack had direct physical consequences: one crew member was stabbed, and others were beaten by the pirates, highlighting the violent nature of the operation. Beyond financial losses, the breach damaged the company’s reputation, as the failure to prevent the hijacking raised questions about operational security. The stolen cargo and physical harm to crew further intensified the fallout, necessitating a post-incident investigation to gather evidence and mitigate future risks.

Source: https://www.offshore-energy.biz/kerala-hijacking-investigation-closed/

TPRM report: https://www.rankiteo.com/company/dynacom-tankers-management-ltd

"id": "dyn838092125",
"linkid": "dynacom-tankers-management-ltd",
"type": "Cyber Attack",
"date": "1/2014",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'industry': 'maritime/shipping',
                        'location': ['Angola', 'Nigeria'],
                        'name': 'MT Kerala',
                        'type': 'oil tanker vessel'},
                       {'industry': 'defense',
                        'location': 'Angola',
                        'name': 'Angolan Navy',
                        'type': 'government/military'}],
 'attack_vector': ['physical access',
                   'disabling tracking systems (AIS)',
                   'visual obfuscation (repainting vessel)',
                   'ship-to-ship transfer'],
 'date_detected': '2014-01',
 'description': 'In January 2014, pirates hijacked the ship MT Kerala in the '
                'waters of Angola and Nigeria. The attackers disabled the '
                'vessel’s AIS and other communication equipment to evade '
                'tracking, repainted identifying features (stack, name, IMO '
                'number), and conducted three ship-to-ship transfers to steal '
                'approximately 12,271.5 tonnes of oil cargo (valued at $10 '
                'million). The Angolan Navy initially suspected the crew of '
                'faking the hijacking. During the attack, one crew member was '
                'stabbed, and others were beaten. An investigation was '
                'launched post-incident to gather evidence.',
 'impact': {'brand_reputation_impact': ['embarrassment to Angolan Navy',
                                        'potential distrust in maritime '
                                        'security'],
            'financial_loss': '$10 million (stolen cargo)',
            'operational_impact': ['loss of cargo control',
                                   'crew injury',
                                   'vessel repainting',
                                   'embarrassment to Angolan Navy'],
            'revenue_loss': '$10 million (direct theft)',
            'systems_affected': ['AIS (Automatic Identification System)',
                                 'communication equipment']},
 'initial_access_broker': {'entry_point': 'physical boarding of the vessel',
                           'high_value_targets': ['fuel/oil cargo',
                                                  'AIS/communication systems']},
 'investigation_status': 'Completed (evidence gathered, but details not '
                         'publicly specified)',
 'lessons_learned': ['Need for improved maritime tracking and anti-tampering '
                     'measures for AIS',
                     'Enhanced physical security protocols for vessels in '
                     'high-risk areas',
                     'Better coordination between naval forces and commercial '
                     'shipping for rapid response'],
 'motivation': 'financial gain (fuel theft)',
 'post_incident_analysis': {'root_causes': ['Inadequate AIS tampering '
                                            'detection',
                                            'Lack of physical security against '
                                            'boarding',
                                            'Delayed naval response']},
 'recommendations': ['Implement tamper-proof AIS systems with real-time alerts',
                     'Increase naval patrols in piracy-prone regions',
                     'Train crew on anti-piracy measures and emergency '
                     'protocols',
                     'Develop international maritime cyber-physical security '
                     'standards'],
 'references': [{'source': 'Maritime security reports (2014)'}],
 'response': {'containment_measures': ['post-incident investigation',
                                       'evidence gathering'],
              'incident_response_plan_activated': True,
              'law_enforcement_notified': True},
 'threat_actor': 'pirates (organized maritime crime group)',
 'title': 'Hijacking and Fuel Theft of MT Kerala (2014)',
 'type': ['physical cyber convergence',
          'maritime piracy',
          'theft',
          'hijacking'],
 'vulnerability_exploited': ['lack of real-time maritime tracking safeguards',
                             'inadequate physical security',
                             'weakness in AIS tampering detection']}