Watch Now


US warns of cyberthreat from China container cranes

Coast Guard directive adds systems risk warning

(Photo by Stuart Chirls/FreightWaves)

The U.S. Coast Guard issued an additional warning to American ports of potential security risks posed by container cranes made in China. 

The new MARSEC Directive 105-5 sets out additional cyber risk management requirements for ship-to-shore cranes made by Chinese companies.

The directive follows a previous mandate for security measures issued in February by the Biden Administration.

The new directive in part states that “built-in vulnerabilities for remote access and control of these STS cranes, combined with intelligence regarding China’s interest in disrupting U.S. critical infrastructure, necessitate immediate action,” the Coast Guard said in a release.


The agency said some cranes are equipped with control technology that could enable China to gain remote access to ports, terminals and computer-based systems.   

China cranes are in use at about 80% of U.S. ports. The leading maker is state-owned Shanghai Zhenhua Heavy Industries Co. Ltd. (ZPMC), which has 200 cranes in operation at American container hubs.

The three-level MARSEC system is used to communicate possible security threats to maritime shipping.

President Joe Biden earlier this year signed an executive order stipulating that billions of dollars in infrastructure funding for port upgrades replace the cranes with ones made in America.


Under the directive, port and terminal operators, crane owners, and other parties involved in the installation, maintenance and support of Chinese-manufactured STS cranes are required to contact their Coast Guard District commander or captain of the port to obtain a copy of the clearance-sensitive directive.

The House Committee on Homeland Security in September identified what it termed “major cybersecurity and national security vulnerabilities” at U.S. ports related to the large number of Chinese-manufactured container cranes, specifically those made by ZPMC, the USCG release stated.

“The evidence gathered during our joint investigation indicates that ZPMC could, if desired, serve as a Trojan horse capable of helping the CCP (China Communist Party) and the PRC (People’s Republic of China) military exploit and manipulate U.S. maritime equipment and technology at their request,” the release quoted Committee Chairman Mark E. Green (R-Tenn.) as saying when the report was released. The committees investigation revealed potential connections between ZPMC and China’s military interests, including unauthorized cellular modem installations which would allow the Chinese to gain remote access to U.S. port, terminals and computer-based systems. 

This article was updated Nov. 30 to add information from The House Committee on Homeland Security.

Find more articles by Stuart Chirls here.

Related coverage:

Port of LA-Long Beach railroad wins grant for electric locomotives


At Rail Trends: Grants, real estate key to short line rail growth

Red Sea attacks turn green for Zim investor

Stuart Chirls

Stuart Chirls is a journalist who has covered the full breadth of railroads, intermodal, container shipping, ports, supply chain and logistics for Railway Age, the Journal of Commerce and IANA. He has also staffed at S&P, McGraw-Hill, United Business Media, Advance Media, Tribune Co., The New York Times Co., and worked in supply chain with BASF, the world's largest chemical producer. Reach him at stuartchirls@firecrown.com.