As marine vessels become increasingly digitized, cybersecurity risks—particularly ransomware—are emerging as a serious operational and safety threat across the maritime industry. Modern ships now integrate navigation, propulsion, dynamic positioning, ballast, and cargo-handling systems into shared digital networks that can be accessed remotely from shore, creating potential pathways for attackers to manipulate safety-critical equipment. Internationally, the IMO’s Resolution MSC.428(98) requires cargo ships of 500 GT or more to embed cyber risk management into their Safety Management Systems, while the United States has gone further with a sweeping U.S. Coast Guard final rule effective July 16, 2025. The regulation mandates comprehensive cybersecurity plans, designated cyber officers, incident response procedures, and mandatory workforce training, framing maritime cybersecurity as a national security issue. With a January 12, 2026 training deadline and full compliance required by July 16, 2027, ports, terminals, vessel operators, and offshore facilities face strict timelines to assess cyber risks, train personnel, and submit approved cybersecurity plans or risk penalties and operational disruption.