A large-scale ransomware attack in January 2022 crippled ICT systems at 17 Western European ports, exposing critical vulnerabilities in maritime cybersecurity.
London, 21, July 2025: EclecticIQ, global cyber threat intelligence leader, has partnered with the NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE) to deliver actionable intelligence for protecting maritime infrastructure against state-sponsored cyber threats. The company contributed expert analysis and CTI to the landmark NATO-affiliated policy brief titled ‘Addressing State-Linked Cyber Threats to Critical Maritime Port Infrastructure.’
The brief examines cybersecurity challenges faced by maritime port facilities, with a focus on NATO member and partner nations, amidst increasing digitalization and geopolitical tensions. It reveals that state-sponsored advanced persistent threat (APT) groups including Russia-linked APT44 and Iran-linked Yellow Lideric have conducted targeted cyber campaigns against European and Middle Eastern ports. These operations have exploited vulnerabilities in legacy operational technology, foreign-manufactured equipment, and poorly segmented digital systems, threatening both civilian and military maritime operations.
A key focus of the report is the growing convergence of IT (information technology) and OT (operational technology) environments in modern ports, which has created new attack surfaces and cascading risks. It also highlights critical gaps in the sharing and application of cyber threat intelligence across national agencies, port authorities, and private operators exposing a systemic weakness in maritime cyber readiness across the Alliance.
“We are proud to have supported this important research, which aligns closely with our mission to help protect critical infrastructure through actionable intelligence,” said Cody Barrow, CEO at EclecticIQ. “Ports handle 90% of global trade and are increasingly targeted by state-sponsored actors. This NATO CCDCOE collaboration showcases how actionable threat intelligence can bridge the gap between identifying threats and preventing attacks on the critical infrastructure that keeps the global economy moving,” he adds.
This partnership exemplifies EclecticIQ’s commitment to advancing collective cybersecurity through intelligence sharing and cross-sector collaboration, reinforcing that protecting critical national infrastructure requires both private sector expertise and international cooperation.
EclecticIQ contributed deep cyber threat intelligence expertise to the report’s methodology, using proprietary CTI tools to map threat actor tactics, techniques, and procedures (TTPs), and assess vulnerabilities within maritime port infrastructure. The report also highlights lessons learned from a large-scale ransomware attack in January 2022, which crippled ICT systems at 17 Western European ports, revealing urgent maritime cybersecurity challenges.
EclecticIQ’s ongoing collaboration with government and industry partners in the maritime and critical infrastructure space reflects its commitment to securing high-risk sectors. The company continues to provide threat intelligence solutions that empower organizations to anticipate, detect, and respond to complex cyber threats in real time.
To learn more about the NATO CCDCOE policy brief or how EclecticIQ helps protect its customers, visit the following links:
NATO CCDCOE press release:
NATO CCDCOE publishes new policy brief on cyber threats to maritime port infrastructure
EclecticIQ case study:
EclecticIQ Intelligence Platform Makes Threat Intelligence Actionable for Financials
Media contact: eclecticiq_uk@berkeleypr.com
About EclecticIQ
EclecticIQ is global cyber threat intelligence leader that empower customers to neutralize critical cyber threats to their business. Guided by our values — being curious, bold, accountable, and collaborative — we help security teams make smarter, faster decisions with dynamic solutions that reduce complexity and streamline threat detection and response.
