Cyber-Attack on Microlise Disrupts DHL and Serco Tracking Services

Summary:
On October 31, 2024, telematics provider Microlise disclosed it suffered from a cyberattack that disrupted tracking services for clients like DHL, a global logistics and shipping company, and Serco, a company that manages the transport of prisoners for the Ministry of Justice in the United Kingdom. Microlise stated that the attack on its network did not expose any customer data. However, limited employee data was compromised. Microlise is currently working with third-party cybersecurity experts to contain the incident and expects to restore impacted systems by the end of the week.

Security Officer Comments:
Microlise provides crucial asset-tracking software to large corporations, and even brief disruptions in access to these services can have significant repercussions for the entire supply chain.

The recent cyberattack on Microlise highlights these risks: it caused a disabling of tracking systems and panic alarms in prison transport vehicles, leaving Serco unable to monitor the locations of prisoners. In response, drivers have been forced to navigate using paper maps and check in with prison facilities every 30 minutes.

The attack has also affected Nisa, a UK-based grocery wholesaler that relies on DHL’s tracking services to monitor product deliveries. While Nisa reports that deliveries are continuing as scheduled, the attack on Microlise has led to a disruption in DHL’s tracking services, meaning that Nisa has no way to receive real-time updates on their shipments until the systems are fully restored.

Suggested Corrections:
In light of the recent attack against Microlise, organizations should implement a comprehensive cybersecurity strategy that includes rigorous vendor risk management, requiring third-party suppliers to adhere to strict security standards. Adopting a zero trust architecture, regularly updating software, and ensuring multi-factor authentication (MFA) for critical systems can help reduce vulnerabilities. Additionally, businesses should have robust incident response and business continuity plans in place, conduct regular cybersecurity training, and maintain continuous monitoring of both internal and vendor systems. Collaboration and transparency across the supply chain are essential to quickly identify and mitigate emerging threats.

Link(s):
https://www.londonstockexchange.com/news-article/SAAS/notice-of-cyber-security-incident/16743075