A cyber attack that shutdown AP-Moller-Maersk’s computer systems could cost in excess of $50m in lost cargo bookings, analysts say.

The estimate from Alphaliner is based on the cargo that was diverted to other carriers after the Danish carrier was forced to shut down its communications and operating infra¬structure on 27 June.

The attack affected Maersk Line and its associated carriers, including Safmarine, MCC Transport, SeaLand, and Seago Line, as well as the Damco’s logistics business.

“We can, with great certainty, say that we have never experienced anything like this,” the Danish carrier said in a customer advisory on 3 July. It adds that its IT systems were being brought on line, and expects to have all its 1,500 applications fully functional within a week.

The crippling effect of the GoldenEye Notpetya attack on the world’s leading operator led to criticism of its cyber defences.

Security expert Lars Jensen estimates that 44% of the carriers had low levels of cyber security related to very basic defences, such as passwords. He added: “The cyber attack on Maersk is well within the scope of scenarios which have been predicted for several years.”

The fact that the virus spread across multiple different business units in Maersk “shows the security level cannot be said to be high”, said Jensen.

“While Maersk had a contingency plan to get rudimentary functions in place within 36 hours of the attack — which is good — the subsequent step from initial contingency operations back to normal operations is dragging out.”

“This development unfortunately supports the notion that the level of cyber security — which by definition includes contingency planning for exactly this eventuality — was not at the highest level.”

“It is crucial that the maritime companies look at the Maersk case and learn from it and create more robust and resilient systems — otherwise this will not be the last time we see such challenges arise,” Jensen added.