Companies hit by NotPetya start to take stock

CERT-LatestNews Malware ThreatsCybercrime ThreatsStrategic
The attack disrupted Maersk's data-reliant processes, leading to congestion at ports.

The attack disrupted Maersk’s data-reliant processes, leading to congestion at ports.

Maersk said it was too early to predict the financial impact of the global Petya cyber attack that hit the shipping giant’s computers and delayed cargoes, but added that normal operations had resumed at its ports.

AP Moller-Maersk, Danish owner of the world’s biggest container shipping line, operates 76 ports via its APM Terminal division and was one of the many firms hit by the ransomware virus along with Russia’s Rosneft and advertising agency WPP.

For the shipping sector, this was among the biggest disruptions to date given Maersk handles one out of seven containers shipped globally.

“Our first priority has not been to look at the financial impact,” Robbert van Trooijen, Maersk’s Asia Pacific chief executive told reporters.

“It is too early to predict what the impact will be on the quarter-two, or potentially the quarter-three result.”

  See also

The attack did not impact Maersk’s physical loading of goods, but disrupted data-reliant processes such as creating arrival notices and obtaining customs clearance – leading to congestion at some of its ports, including in the US, India, Spain and the Netherlands.

Van Trooijen said all ports Maersk worked with were now back on stream and releasing cargo. “Over the last 48 hours we are basically ensuring that just about every port in the world is able to receive and release cargo again.”

He said it was unclear how many bookings had been cancelled due to the attack which spread globally on 28 June, but the firm was now seeing a rebound in bookings as systems recovered.

He added Maersk would discuss settlement and liability issues with individual shippers who had been affected.

The cyber virus is believed to have first taken hold in Ukraine before spreading globally where it locked machines and demanded victims post a ransom worth $300 in Bitcoins or lose their data entirely.

Van Trooijen said the company did not believe Maersk was deliberately targeted, given the virus’s geographic reach, and that it would continue to work with cyber security and software firms to ensure it was as protected as it could be.

He, however, warned it would be difficult to guard against new, random viruses.

“There was nothing in terms of patches that we missed, there was no cyber security measures that we didn’t take, so we were already in quite a strong position,” he said.

Sour note

Meanwhile, Mondelez International, the world’s second-largest confectionary company, said its second-quarter revenue growth would be reduced by 3% due to the NotPetya cyber attack.

The owner of Cadbury chocolate said last month that employees in different regions were experiencing technical problems but it was unclear whether it was due to the cyber attack.

“There are a few markets where we have permanently lost some of that revenue due to holiday feature timing, but we expect we will be able to recognise the majority of these delayed shipments in our third quarter results,” Mondelez said on Thursday.

The company also said its shipping and invoicing was disrupted during the last four days of the second quarter and its affected systems were now up and running.

However, Mondelez reaffirmed its full-year organic revenue outlook of “at least 1% growth”, and said it is yet to assess the full financial impact of the attack.

The company expects to incur incremental one-time costs in both second and third quarters as a result of the issue.

Copyright 2017 Reuters Limited. All rights reserved. Republication and redistribution of Reuters content is expressly prohibited without the prior written consent of Reuters. Reuters shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Our comments policy does not allow anonymous postings. Read the policy here