IRGC-Linked Cyberattack Targets Greek Maritime Firm Altomare

Cybersecurity sources report that Greek shipowner Altomare has suffered a cyberattack attributed to hackers associated with Iran's Islamic Revolutionary Guard Corps (IRGC). The incident, which reportedly impacted the company's computer systems, marks a significant development in the application of cyber warfare to maritime infrastructure. While technical details of the intrusion remain scarce in public reporting, the attack underscores the vulnerability of maritime operations to state-sponsored cyber threats. The shipping industry's reliance on interconnected IT and OT systems for navigation, cargo management, and communications creates an expansive attack surface that adversaries may exploit for geopolitical or economic leverage. The alleged involvement of IRGC-linked actors aligns with documented patterns of Iranian cyber operations, which have previously targeted critical infrastructure sectors including energy and transportation. However, without access to forensic evidence or indicators of compromise from the original threat report, definitive technical analysis is not possible. For cybersecurity professionals, this incident highlights the urgent need for maritime organizations to implement robust network segmentation between corporate and operational systems, deploy endpoint detection and response (EDR) solutions capable of identifying advanced threats, establish comprehensive incident response plans specifically tailored to maritime OT environments, and participate in industry-specific threat intelligence sharing initiatives. The targeting of Altomare serves as a stark reminder that cyber warfare is extending into previously under-defended sectors of critical infrastructure. Organizations within the maritime industry must treat this as a call to action to reassess and strengthen their cybersecurity posture against sophisticated nation-state threats.