tech
Vessels of the 'shadow fleet' found to have programs for remote control and data deletion. This creates a risk of explosions and oil spills
Owners of 'shadow fleet' tankers, which transport Russian and Iranian oil bypassing sanctions, are using a set of digital tools to control crews and hide traces, writes The Wall Street Journal. Cybersecurity specialists from the US Coast Guard have identified the use of information systems vulnerable to hacking. This was discovered by studying equipment on vessels captured by American forces.

TL;DR
- Owners of 'shadow fleet' tankers are using digital tools for crew control and to hide traces of illegal oil transport.
- US Coast Guard cybersecurity specialists found that information systems on captured tankers are vulnerable to hacking.
- Remote access applications like AnyDesk and TeamViewer allow owners to interfere with ship systems, and digital data has been remotely deleted.
- Some tankers use pirated software infected with malware, connected to critical operational and navigational systems.
- These vulnerabilities increase the risk of fires, explosions, and oil spills due to the volatile nature of crude oil.
- Multiple AIS devices and equipment to switch vessel identification signals were found, aiding in route concealment.
- The detained tankers were intentionally designed for illegal activities, not just incidentally involved in sanctions evasion.
- The US launched a campaign against the 'shadow fleet' in December 2025, with the UK recently detaining a Russian tanker.