Ransomware cyber

Norwegian Ship Services

Jan 12, 2026 1 min read
Norwegian Ship Services

The Akira Ransomware group targeted Norwegian Ship Services in November 2024, employing multi-extortion tactics to coerce compliance. The attackers operate a TOR-based leak site, publicly listing victims and exposing stolen data if ransom demands are unmet. As a long-standing provider of essential maritime services for over 40 years, the company’s operations face severe disruption due to the attack. The breach not only threatens operational continuity potentially halting critical logistics, vessel support, or port coordination but also inflicts reputational damage by eroding trust among clients, partners, and regulatory bodies. The public exposure of sensitive corporate or client data (if leaked) could further exacerbate financial losses, legal liabilities, and contractual penalties. Given the maritime sector’s interconnectedness, prolonged outages may cascade into broader supply chain delays, amplifying the attack’s economic and strategic fallout. The incident underscores the vulnerability of mission-critical infrastructure to ransomware groups leveraging data theft and public shaming as leverage.

Source: https://www.redpacketsecurity.com/akira-ransomware-victim-ship-services/

TPRM report: https://www.rankiteo.com/company/wilhelmsen_group

"id": "wil848092125",
"linkid": "wilhelmsen_group",
"type": "Ransomware",
"date": "11/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Maritime Services',
                        'location': 'Norway',
                        'name': 'Norwegian Ship Services',
                        'type': 'Private Company'}],
 'data_breach': {'data_encryption': True, 'data_exfiltration': True},
 'date_detected': '2024-11',
 'description': 'The Akira Ransomware group targeted Norwegian Ship Services '
                'in November 2024. The threat actor employs multi-extortion '
                'tactics and hosts a TOR-based website where victims are '
                'listed along with stolen data if ransom demands are not met. '
                "The attack poses risks to the company's operations and "
                'reputation, given its 40-year history in providing essential '
                'maritime services.',
 'impact': {'brand_reputation_impact': 'High (reputational damage due to '
                                       'public listing of stolen data)',
            'data_compromised': True,
            'operational_impact': 'Potential disruption to maritime services'},
 'motivation': 'Financial (multi-extortion)',
 'ransomware': {'data_encryption': True,
                'data_exfiltration': True,
                'ransomware_strain': 'Akira'},
 'threat_actor': 'Akira Ransomware Group',
 'title': 'Akira Ransomware Attack on Norwegian Ship Services',
 'type': 'Ransomware'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.