As we shared in our press release on 21st July 2025, EclecticIQ partnered with the NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE) to deliver actionable intelligence for protecting maritime infrastructure against state-sponsored cyber threats. Our threat research team contributed expert analysis to the NATO-affiliated policy brief titled: ‘Addressing State-Linked Cyber Threats to Critical Maritime Port Infrastructure.’
The report revealed that targeted cyber campaigns had been conducted by state-sponsored advanced persistent threat (APT) groups, including Russia-linked APT44 and Iran-linked Yellow Lideric, against European and Middle-Eastern ports, threatening both civilian and military maritime operations. These targeted campaigns were found to have exploited vulnerabilities in legacy operational technology, foreign-manufactured equipment, and poorly segmented digital systems.
Though concerning, the report findings provide some clear areas of focus with which to chart a trajectory of continuous improvement in maritime infrastructure security. The convergence of IT (information technology) and OT (operational technology) in modern ports, and the expanding attack surfaces and risk exposure that come with it, is a key theme which should remain front-of-mind for security leaders. Critical gaps in the sharing and application of cyber threat intelligence across national agencies, port authorities, and private operators was also cited as a key challenge which exposes a systemic weakness in maritime cyber readiness across the Alliance.
As EclecticIQ CEO, Cody Barrow, has noted when discussing European cybersecurity collaboration: "Real success, however, relies on collaboration between public and private sectors driven by a renewed sense of purpose." Whether the discussion is around the European cybersecurity ecosystem or the North Atlantic Alliance, the foundational principle remains; we're stronger together.
EclecticIQ’s ongoing collaboration with government and industry partners in the maritime and critical infrastructure space reflects its commitment to securing high-risk sectors. The company continues to provide threat intelligence solutions that empower organizations to anticipate, detect, and respond to complex cyber threats in real time.