Ports handle nearly 80 per cent of global trade by volume and have evolved into complex digital ecosystems that rely on real-time data exchange among port authorities, terminal operators, customs agencies, shipping lines and logistics providers. While digitalisation has improved efficiency and transparency, it has also increased exposure to cyber threats that can disrupt cargo flows, vessel operations and critical port infrastructure.
According to the World Bank’s report Cybersecurity in Ports: Shifting from Risk to Resilience, cyberattacks now pose a significant risk to operational continuity and supply chain stability. The study, based on a global survey of more than 100 port stakeholders, expert interviews and extensive research, highlights major gaps in cybersecurity preparedness, particularly in low- and middle-income countries.
The report found a clear cyber resilience divide between developed and developing economies. Ports in high-income countries generally have stronger incident reporting mechanisms, regular cybersecurity training programmes and more frequent risk assessments. In contrast, many ports in developing regions continue to struggle with outdated systems, limited technical expertise and inadequate cyber readiness.
The World Bank emphasised that cybersecurity has become an essential component of operational resilience as ports increasingly adopt “Port 4.0” technologies that integrate information technology (IT) and operational technology (OT). Cyber incidents can now affect not only administrative systems but also vessel traffic management, cargo handling operations and automated equipment such as robotic cranes and guided vehicles.
The financial consequences of cyberattacks are also escalating. The average cost of a cyber incident in the maritime transport sector reached $550,000 in 2023, three times higher than in 2022, while average ransom demands climbed to $3.2 million.
To strengthen resilience, the report recommends that ports incorporate cybersecurity into existing operational risk management frameworks rather than creating entirely new institutional structures. Key measures include establishing clear cybersecurity policies, maintaining updated inventories of physical and digital assets, conducting regular risk assessments and testing recovery plans through drills and simulations.
The World Bank concluded that as ports become increasingly digital and interconnected, strengthening cybersecurity will be critical to safeguarding global trade flows, supply chain reliability and economic stability.
