Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
A.P. Moller - Maersk

A.P. Moller - Maersk Vendor Cyber Rating & Cyber Score

maersk.com

A.P. Moller - Maersk is an integrated transport and logistics company; going all the way, together, for our customers and society. ALL THE WAY is our commitment to connect the world so that everyone has both the possibility and the ability to trade, grow and thrive. The company employs roughly 110.000 employees across operations in 130 countries.


AMM A.I CyberSecurity Scoring

AMM
Company Information
Website:http://www.maersk.com
Employees number:82,857
Number of followers:2,390,055
NAICS:47
Industry Type:Transportation, Logistics, Supply Chain and Storage
Homepage:maersk.com
AMM Risk Score (AI oriented)
Between 650 and 699
logo
AMMTransportation, Logistics, Supply Chain and Storage
Updated:
12/06/2026
676/1000
Weak
B
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
AMM Global Score (TPRM)
xxxx
logo
AMMTransportation, Logistics, Supply Chain and Storage
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

AMM
AMMWeak
Current Score
676B (WEAK)
01000
4 incidents
-124 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
671Before Incident
JUNE 2026
676Before Incident
MAY 2026
671Before Incident
APRIL 2026
671Before Incident
MARCH 2026
668Before Incident
FEBRUARY 2026
663Before Incident
JANUARY 2026
659Before Incident
DECEMBER 2025
779Before Incident
Ransomware
11 Dec 2025AMM
UnitedHealth, Ticketmaster, MGM Resorts, Ripple, Snowflake, Google, Allianz, Equifax, Maersk, Toyota, Merck and Oracle: 2025 Cybersecurity Almanac: 100 Facts, Figures, Predictions And Statistics

Global Cybercrime Surge and Major Incidents (2024-2025)

655After Incident
CRITICAL-124
MEREQUUNIMAEMGMGOOTOYSNOALLORARIPTIC1775528897
Cybercrime in 2025: A Global Threat Surpassing National Economies Cybercrime continues to escalate into one of the world’s most lucrative illicit industries, with damages projected to reach $10.5 trillion USD globally in 2025 a figure that, if measured as a country, would rank as the third-largest economy after the U.S. and China. This staggering growth, driven by increasingly sophisticated attacks, underscores the evolving threat landscape as cybercriminals target businesses, governments, and individuals with alarming efficiency. ### The Cybercrime Epidemic: Key Trends - Underreporting Persists: Despite improved reporting practices, less than 25% of global cybercrimes are reported to law enforcement, leaving vast swaths of criminal activity unaddressed. - Youth-Driven Threats: The FBI reports that cybercriminals are getting younger, with the average age of arrested offenders dropping a trend that complicates traditional law enforcement approaches. - Hotspots Identified: A 2024 World Cybercrime Index ranked Russia, Ukraine, China, the U.S., Nigeria, and Romania as the top sources of cybercrime, highlighting concentrated hubs of malicious activity. ### Ransomware: A Pervasive Threat Ransomware remains a dominant force, with attacks increasing 9% year-over-year in 2024. The most active groups Akira, LockBit, RansomHub, FOG, and PLAY targeted critical infrastructure, with 88% of small-to-midsized businesses (SMBs) and 39% of large enterprises experiencing breaches. The financial toll is staggering: - $20 billion USD in 2021 (up from $325 million in 2015). - Projected to exceed $265 billion by 2031, with attacks occurring every 2 seconds by 2031. High-profile incidents in 2024–2025 include: - UnitedHealth’s $1.6 billion loss after a ransomware attack disrupted U.S. healthcare payments. - CDK Global’s auto dealership shutdowns, forcing businesses offline for days after a ransom demand in the tens of millions. - MGM Resorts’ $100 million hit from a 2023 attack that crippled casino operations. ### Cryptocurrency Crime: A Booming Black Market Cryptocurrency-related crimes surged, with $28 billion in illicit funds flowing into exchanges over two years. Key developments: - Ripple co-founder Chris Larsen lost $112.5 million in a 2024 hack one of the largest individual crypto thefts. - Huione, a Cambodian marketplace, processed $70 billion in suspicious transactions since 2021, facilitating scams, fraud, and sanctioned activities. - North Korea’s Lazarus Group was linked to the $625 million Axie Infinity hack (2022), the largest crypto theft to date. ### Major Breaches and Supply-Chain Attacks 2024–2025 saw a wave of supply-chain and cloud-based attacks, exposing vulnerabilities in interconnected systems: - Snowflake Breach: Hackers exploited stolen credentials to access 560 million Ticketmaster records and Live Nation data, prompting a federal investigation. - Salesforce Exploits: The ShinyHunters gang breached dozens of companies, including Google, Allianz, and Toyota, by targeting cloud databases. - MOVEit Hack: The Clop ransomware group compromised 2,600+ organizations, including U.S. government agencies and global corporations. - Oracle Cloud Attack: Over 100 companies were affected by a campaign targeting Oracle’s business software, with damages still being tallied. ### Historic Cyberattacks: Lessons from the Past The report highlights landmark cyber incidents that reshaped security paradigms: - Equifax (2017): 147 million records exposed, including Social Security numbers, due to an unpatched vulnerability. - NotPetya (2017): A $10 billion attack originating in Ukraine, crippling Maersk, Merck, and global supply chains. - WannaCry (2017): Infected 200,000 systems across 150 countries, demanding Bitcoin ransoms. - Stuxnet (2010): A U.S.-Israeli cyberweapon that sabotaged Iran’s nuclear centrifuges. - Heartbleed (2014): A catastrophic OpenSSL flaw that exposed 500,000 servers to data theft. ### The Future of Cybersecurity While AI-driven defenses have reduced breach containment times to 241 days (the lowest in nine years), the same technologies are being weaponized by attackers. With 60% of global data now stored in the cloud and 6 billion internet users by 2025, the attack surface continues to expand. Small businesses remain particularly vulnerable 60% fold within six months of a cyberattack. As cybercrime evolves, the economic and operational risks demand heightened vigilance, though the battle against digital threats shows no signs of slowing.
INCIDENT DETAILS -
TYPE
RansomwareData BreachSupply-Chain AttackCryptocurrency Crime
MOTIVATION
Financial gainData exfiltrationDisruption of critical infrastructureEspionage
IMPACT
Financial Loss: $10.5 trillion (projected global damages in 2025)560 million Ticketmaster recordsLive Nation data147 million Equifax records200,000 systems (WannaCry)500,000 servers (Heartbleed)Healthcare payments (UnitedHealth)Auto dealerships (CDK Global)Casino operations (MGM Resorts)2,600+ organizations (MOVEit)100+ companies (Oracle Cloud)Days (CDK Global)Extended (MGM Resorts)Disrupted U.S. healthcare paymentsForced businesses offlineCrippled casino operationsGlobal supply chain disruptions$1.6 billion (UnitedHealth)$100 million (MGM Resorts)Tens of millions (CDK Global)High (Equifax, Ticketmaster, Live Nation)Federal investigations (Snowflake breach)Fines (Equifax)High (Equifax, Ticketmaster)High (Ticketmaster, Live Nation)
DATA BREACH
Personally Identifiable Information (PII)Payment informationHealthcare dataCorporate data560 million (Ticketmaster)147 million (Equifax)200,000 systems (WannaCry)High (PII, payment info, healthcare data)Yes (Snowflake, ShinyHunters, Clop)Yes (Ransomware attacks)Social Security numbers (Equifax)Customer records (Ticketmaster, Live Nation)
NOVEMBER 2025
779Before Incident
OCTOBER 2025
778Before Incident
SEPTEMBER 2025
777Before Incident
AUGUST 2025
777Before Incident
AUGUST 2021
780Before Incident
Breach
01 Aug 2021AMM
T-Mobile

T-Mobile Data Breach

722After Incident
CRITICAL-58
T-M416050724
In August 2021, T-Mobile experienced a significant cybersecurity breach, resulting in the theft of data from about 50 million existing and potential customers. The information compromised included customer addresses, drivers' licenses, and social security numbers. This breach was orchestrated by a 21-year-old who claimed to have accessed approximately 106GB of T-Mobile's data. The exposure of such sensitive personal information potentially puts millions of individuals at risk of identity theft and fraud, raising serious privacy and security concerns.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
customer addressesdrivers' licensessocial security numbersIdentity Theft Risk: High
DATA BREACH
customer addressesdrivers' licensessocial security numbersNumber Of Records Exposed: 50 millionSensitivity Of Data: HighData Exfiltration: 106GBPersonally Identifiable Information: Yes
JUNE 2017
792Before Incident
Ransomware
27 Jun 2017AMM
Maersk: San Diego port hit by ransomware attack

Ransomware Attack on Port of San Diego

725After Incident
CRITICAL-67
MAE1781271625
Cyberattack Disrupts Port of San Diego Operations, Highlighting Ransomware Threats to Shipping Industry In a recent cybersecurity incident, the Port of San Diego fell victim to a ransomware attack that disrupted key administrative systems. The malware infiltrated the port’s computer network, impacting services such as the issuance of parking permits, public records requests, and general business operations. While the attack did not halt maritime activities or endanger public safety, it underscored the growing vulnerability of critical infrastructure to cyber threats. The port confirmed that hackers demanded payment in Bitcoin, though the specific malware strain was not disclosed. The FBI and Department of Homeland Security are assisting in the investigation and recovery efforts. This incident follows a broader trend of ransomware targeting shipping and logistics sectors, including last year’s high-profile NotPetya attack on Maersk, which resulted in an estimated $200 million in losses and weeks of operational disruption. The Port of San Diego, which manages 34 miles of coastline, joins a list of maritime entities affected by cyberattacks, including a brief closure of China Ocean Shipping Company’s Long Beach terminal due to malware. While the port emphasized that normal operations continued, the attack serves as a reminder of the financial and operational risks posed by ransomware to global supply chains.
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Financial gain
IMPACT
Systems Affected: Administrative systems (parking permits, public records requests, general business operations)Operational Impact: Disruption of administrative services
DATA BREACH
Data Encryption: Yes
JUNE 2017
802Before Incident
Cyber Attack
16 Jun 2017AMM
Maersk

Maritime Cybersecurity Threats and Incidents (2017–2024)

787After Incident
CRITICAL-15
MAE508082925
In 2017, Maersk, the world’s largest shipping company, fell victim to the NotPetya cyberattack, a destructive malware campaign attributed to Russian military hackers. The attack originated from a compromised update in Ukrainian accounting software, rapidly spreading across Maersk’s global network. The incident forced the shutdown of 76 port terminals, disrupted over 45,000 PCs and 4,000 servers, and paralyzed critical operations, including cargo tracking, booking systems, and communication channels.The financial and operational impact was severe, with Maersk estimating losses between $250–$300 million due to halted shipments, delayed deliveries, and recovery efforts. The attack exposed deep vulnerabilities in the company’s IT infrastructure, particularly its reliance on interconnected systems without adequate segmentation. While Maersk managed to restore operations within weeks by reinstalling entire systems from backups, the incident highlighted the maritime sector’s susceptibility to state-sponsored cyber warfare and the cascading effects of a single breach on global trade.The attack also triggered industry-wide alarm, prompting Maersk and other shipping giants to invest heavily in cybersecurity upgrades, including network isolation, endpoint protection, and employee training to mitigate future threats.
INCIDENT DETAILS -
TYPE
RansomwareCyber EspionageGNSS Jamming/SpoofingAI-Powered AttacksSupply Chain CompromiseOperational Technology (OT) Disruption
MOTIVATION
Financial Gain (Ransomware)Geopolitical Disruption (State Actors)Espionage (Strategic Maritime Data)Hacktivism (e.g., Lab-Dookhtegan)Operational Sabotage (e.g., GNSS Interference)
IMPACT
Maersk: $300M (NotPetya, 2017)Unspecified losses for MarineMax, Port of Rijeka, and other targetsFinancial Records (Maersk, MarineMax, Port of Rijeka)Employee/Customer Data (MarineMax)Shipping Routes/Cargo Data (Ports)Personal Data (Port of Rijeka: invoices, contracts, accounting records)Navigation/Logistics Data (GNSS Spoofing)76 Port Terminals (Maersk, 2017)45,000+ PCs and 4,000 Servers (Maersk)Accounting Systems (MarineMax)Communications (60+ Iranian Oil Tankers)GNSS Navigation (Jamming/Spoofing)OT Systems (MV Dali power loss)Maersk: Weeks (NotPetya)Port of Rijeka: Unspecified (8Base Attack)Iranian Tankers: Communications Disabled (Lab-Dookhtegan)Collapse of Francis Scott Key Bridge (MV Dali, indirect)Disruption of 80% Global Trade (Port Targeting)Manual Overrides Required (Digital System Failures)Supply Chain Delays (Ransomware/OT Attacks)Maersk: $300M (2017)Potential losses for Port of Rijeka, MarineMax, and other entitiesLikely for MarineMax (data breach)Potential for Maersk/Port of Rijeka (service disruptions)Maersk (NotPetya)MarineMax (Customer/Employee Data Exposure)Port of Rijeka (Confidential Data Theft)Potential GDPR Violations (EU Ports)U.S. Coast Guard Reporting Requirements (2025 Rule)IMO ISM Code Non-Compliance RisksEmployee/Customer Data (MarineMax, Port of Rijeka)Financial Records (Maersk, MarineMax, Port of Rijeka)
DATA BREACH
Financial RecordsEmployee DataCustomer DataShipping Routes/Cargo DataPersonal Data (Contracts, Invoices)Accounting RecordsSensitivity Of Data: High (financial, PII, operational)Port of Rijeka (8Base claimed theft)MarineMax (online exposure)Potential in NotPetya (Maersk)Ransomware Encryption (NotPetya, 8Base)InvoicesReceiptsEmployment ContractsAccounting RecordsNavigation Logs (GNSS Data)Employee/Customer Data (MarineMax, Port of Rijeka)

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for AMM ?
?
What was AMM's A.I Rankiteo Cyber Score in June 2026 ?
?
What was AMM's A.I Rankiteo Cyber Score in May 2026 ?
?
What was AMM's A.I Rankiteo Cyber Score in April 2026 ?
?
What was AMM's A.I Rankiteo Cyber Score in March 2026 ?
?
What was AMM's A.I Rankiteo Cyber Score in February 2026 ?
?
What was AMM's A.I Rankiteo Cyber Score in January 2026 ?
?
What was AMM's A.I Rankiteo Cyber Score in December 2025 ?
?
What was AMM's A.I Rankiteo Cyber Score in November 2025 ?
?
What was AMM's A.I Rankiteo Cyber Score in October 2025 ?
?
What was AMM's A.I Rankiteo Cyber Score in September 2025 ?
?
What was AMM's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on AMM's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with AMM ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view AMM's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?