top of page
perceptive_background_267k.jpg

France arrests Latvian for installing malware on Italian ferry

Published:

18 December 2025 at 13:47:59

Alert date:

18 December 2025 at 14:01:15

Source:

bleepingcomputer.com

Click to open the original link from this advisory

Ransomware & Malware, Critical Infrastructure

French authorities arrested two crew members of an Italian passenger ferry suspected of infecting the ship with malware that could have enabled them to remotely control the vessel. The incident involved a Latvian national who allegedly installed malware on the ferry's systems. This represents a significant maritime cybersecurity incident with potential implications for vessel safety and control systems. The malware installation could have allowed unauthorized remote access to critical ship operations and navigation systems.

Technical details

A remote access tool (malware) was discovered aboard the GNV Fantastic ferry owned by Italian shipping company Grandi Navi Veloci. The malware was installed by a Latvian crew member who recently joined the ferry crew. The malware could have enabled remote control of the vessel. The malware was discovered while the ferry was docked at the Mediterranean port of Sète and was neutralized without consequences according to GNV.

Mitigation steps:

GNV discovered the malware and alerted Italian authorities and France's General Directorate of Internal Security. The malware was neutralized without consequences. Investigation is ongoing under the direction of the investigating judge in cooperation with Italian authorities.

Affected products:

GNV Fantastic ferry computer systems
Grandi Navi Veloci shipping systems

Related links:

https://www.leparisien.fr/faits-divers/un-navire-accoste-dans-lherault-au-coeur-dune-mysterieuse-enquete-pour-contre-espionnage-et-piratage-16-12-2025-7765URZED5HJTD5LCFUAXWFGZA.php
https://www.france24.com/en/live-news/20251217-france-probes-foreign-interference-after-malware-found-on-ferry-1
https://www.bleepingcomputer.com/news/security/ukrainian-hacker-charged-with-helping-russian-hacktivist-groups/
https://www.bleepingcomputer.com/news/security/pro-russian-hackers-blamed-for-water-dam-sabotage-in-norway/
https://www.bleepingcomputer.com/news/security/dutch-teens-arrested-for-trying-to-spy-on-europol-for-russia/
https://www.bleepingcomputer.com/news/security/france-interior-ministry-confirms-cyberattack-on-email-servers/
https://www.bleepingcomputer.com/news/security/france-arrests-suspect-tied-to-cyberattack-on-interior-ministry/

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page