19.12.2025
2 min
433
French authorities have arrested a crew member of an Italian passenger ferry on suspicion of installing malware that could have enabled remote interference with the vessel’s systems. The incident is being investigated as a potential case of foreign interference and raises serious concerns about maritime cybersecurity.
Investigators found a remote access tool installed on systems aboard the Fantastic ferry, operated by Grandi Navi Veloci. Following the discovery, a Latvian national who had recently joined the crew was arrested and transferred to Paris for further questioning. A second suspect, a Bulgarian national, was released without charges.
Prosecutors allege that the detained suspect participated in unauthorized access to computer systems as part of an organized group, potentially acting on behalf of a foreign power. The malware could have allowed attackers to remotely access or manipulate the ship’s onboard systems.
The malware was discovered by GNV while the ferry was docked at the Mediterranean port of Sète. The company alerted Italian authorities and France’s counterintelligence agency, the DGSI. Officials stated that the malicious software was neutralized without causing operational disruptions or safety incidents.
France’s Interior Minister confirmed that the investigation is examining the possibility of foreign interference, noting that such cyber incidents are increasingly linked to state-sponsored hybrid operations targeting critical infrastructure across Europe.
The arrest highlights growing cybersecurity risks facing the maritime sector. As ships become more dependent on interconnected digital systems, even limited cyber intrusions can pose significant safety and security threats. Protecting maritime infrastructure is now a core component of national and international security strategies.
