Cybersecurity in the Trucking Industry: A Close Call and Lessons Learned
In an age where technology underpins nearly every aspect of business operations, the trucking industry is not immune to the threats posed by cyberattacks. A recent incident involving Werner Enterprises serves as a stark reminder of the vulnerabilities that carriers face and the critical importance of robust cybersecurity measures.
A Lucky Escape: Werner Enterprises’ Close Call
Three months ago, an employee at Werner Enterprises received a malicious PDF file via email. Fortunately, the company had just updated its SentinelOne software the night before, which included a feature that isolated the specific worm embedded in the malicious file. The email went unopened until the following morning, allowing the software to thwart what could have been a significant cyber incident. Daragh Mahon, Executive Vice President and Chief Information Officer at Werner, described the incident as a stroke of luck during his presentation at the National Motor Freight Traffic Association’s Cybersecurity Conference on October 29.
This close call highlights the ever-present threat of cyberattacks in the trucking sector and underscores the necessity for regular system upgrades and technological investments. As the industry becomes increasingly digitized, the stakes are higher than ever, especially in light of new regulations from the Securities and Exchange Commission (SEC) that require publicly traded companies to disclose cybersecurity incidents that could materially impact their operations within four business days.
The Growing Importance of Cybersecurity
As the trucking industry grapples with these challenges, executives are increasingly prioritizing cybersecurity efforts. This includes not only protecting corporate networks but also securing the vehicles themselves, which are becoming more connected and, consequently, more vulnerable to hacking.
Industry leaders are recognizing that a multi-faceted approach is essential for effective cybersecurity. This involves developing a skilled workforce, securing buy-in from company leadership, and fostering relationships with government resources. These strategies are crucial for creating a resilient cybersecurity posture that can withstand potential threats.
Daimler’s Proactive Measures
Daimler Truck North America is taking proactive steps to enhance its cybersecurity framework, particularly concerning its autonomous vehicles. Robert Zimmerman, group manager of Daimler’s cybersecurity team, shared insights at the conference about the company’s efforts to educate leadership on the realities of cyber threats. This year, the team conducted three security demonstrations to provide executives with hands-on experience of what it feels like when a truck is hacked.
Zimmerman noted a shift in leadership’s awareness and vocabulary regarding cybersecurity, indicating a growing recognition of its importance. As Daimler prepares to launch its fifth-generation Cascadia next year, cybersecurity has been integrated into the design process from the outset, marking a significant advancement over previous models. "We fully expect the threat landscape to continue to change, and that we will need to react to that in some way," Zimmerman stated, emphasizing the need for a platform that allows for timely updates and responses to emerging threats.
Preparing for the Inevitable: Tabletop Exercises
At the NMFTA conference, cybersecurity leaders engaged in a business continuity tabletop exercise designed to simulate a cyberattack. This exercise highlighted the importance of preparation and collaboration among various stakeholders, including trucking leaders, board members, legal staff, and even representatives from the FBI.
Art Ocain, Vice President of Incident Response and Disaster Recovery at cyber defense firm Airiam, stressed the necessity of involving these parties from the outset. "Plans can break down when cyber incidents occur and people start to panic," he warned. Steve Hankel, Vice President of IT at Johanson Transportation Service, echoed this sentiment, urging carriers not to fear collaboration with federal agencies. The FBI and other organizations, such as the Cybersecurity & Infrastructure Security Agency (CISA), are there to assist and can help streamline responses to incidents.
Building a Cybersecurity Culture
The trucking industry is at a crossroads where the integration of technology and the need for cybersecurity must go hand in hand. As incidents like the one experienced by Werner Enterprises illustrate, the potential for cyber threats is ever-present. However, by investing in technology, fostering a culture of cybersecurity awareness, and building strong relationships with government resources, carriers can significantly mitigate risks.
In conclusion, the trucking industry must remain vigilant and proactive in its approach to cybersecurity. By learning from close calls and implementing comprehensive strategies, companies can better protect themselves against the evolving landscape of cyber threats. The time to act is now, as the consequences of inaction could be dire.