Access to the IMO’s public website and most web-based services has been restored following a cyber-attack on September 30, with the Organisation confirming on Friday afternoon (October 2) that systems were once again up and running.
“The email system, including other internal and external collaboration platforms, are working as normal. The platform used for virtual meeting with simultaneous interpretation has been unaffected and continued to function, without issue, during Wednesday’s Facilitation Committee (FAL) session and is expected to continue to function during (Friday’s) final FAL session,” IMO said, in a statement.
The interruption was caused by a “sophisticated” cyber-attack against the regulator’s IT systems that overcame its ISO/IEC 27001:2013 certified information security management system. The IMO Headquarters file servers are located in the UK, with backup systems in Geneva.
“Following the attack, the Secretariat shut down key systems to prevent further damage from the attack,” IMO added.
“The Secretariat is working with international security experts to restore systems as soon as possible, to identify the source of the attack, and further enhance security systems to prevent recurrence.”
“The Secretariat takes its responsibilities for cyber risk management and information security management extremely seriously and has acted immediately to address the cyber-attack and to implement measures to ensure the risk of recurrence is minimised.”
Service access to the GISIS database, IMODOCS and Virtual Publications were restored on October 1, with other web-based services to follow as soon as they are deemed safe.