HMM (Hyundai Merchant Marine)

In June 2021, HMM (Hyundai Merchant Marine), a South Korea-based global shipping and logistics company, fell victim to a phishing attack that introduced a malicious virus into its email systems. The breach disrupted email services across most regions, excluding America and Europe, rendering the affected systems inoperable. The incident stemmed from unauthorized access, likely due to an employee falling prey to a deceptive phishing scheme, allowing the virus to infiltrate critical infrastructure. The attack did not explicitly mention data theft, financial fraud, or ransomware demands, but the operational outage of email servers vital for internal and external communications posed significant disruptions to business continuity. While no direct financial losses, customer data leaks, or physical harm were reported, the inability to use email systems could have cascading effects on logistics coordination, partner communications, and internal workflows. The breach underscored vulnerabilities in HMM’s cybersecurity posture, particularly against social engineering tactics like phishing, which remain a persistent threat in the maritime and logistics sectors. The incident highlights how even non-destructive attacks can cripple core functions, emphasizing the need for robust email security protocols, employee training, and incident response strategies to mitigate future risks.

Source: https://www.offshore-energy.biz/hmm-hit-by-cyber-attack/

TPRM report: https://www.rankiteo.com/company/hyundai-america-shipping-agency-inc

"id": "hyu436092125",
"linkid": "hyundai-america-shipping-agency-inc",
"type": "Cyber Attack",
"date": "6/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"

{'affected_entities': [{'industry': 'Shipping/Logistics',
                        'location': 'South Korea',
                        'name': 'HMM (Hyundai Merchant Marine)',
                        'type': 'Corporation'}],
 'attack_vector': 'Phishing',
 'date_detected': '2021-06',
 'date_publicly_disclosed': '2021-06',
 'description': 'In June 2021, South-Korea based HMM (Hyundai Merchant Marine) '
                'was hit with a virus due to a phishing attack. The virus '
                'infiltrated the email systems, rendering them unusable in all '
                'regions except America and Europe.',
 'impact': {'downtime': 'Ongoing (as of disclosure, email systems unusable in '
                        'affected regions)',
            'operational_impact': 'Email system outage in all regions except '
                                  'America and Europe',
            'systems_affected': ['Email servers (excluding America and '
                                 'Europe)']},
 'initial_access_broker': {'entry_point': 'Phishing (email)'},
 'title': 'HMM (Hyundai Merchant Marine) Phishing Attack and Email System '
          'Disruption',
 'type': 'Cyber Attack (Phishing, Malware)'}

HMM (Hyundai Merchant Marine)

Binance, INSS and Google: BeatBanker Android Trojan Uses Silent Audio Loop to Steal Crypto

Stryker: Cork-based Stryker hit with cyber attack linked to Iranian-backed group

Cloudflare and Hurricane Electric: Hacker abusing .arpa domain to evade phishing detection, says Infoblox