Rectifyq📃Title: Cyber-Enabled Maritime Sanctions Evasion
📅Date: 2026-06-11
🔗References:
- https://www.recordedfuture.com/research/media_12cb79eec13b6af7520af3c1ae6768c0f4b25e945.gif?width=1200&format=pjpg&optimize=medium
- https://www.recordedfuture.com/research/cyber-maritime-sanctions-evasion
Description
Iranian and Russian shadow fleet vessels are utilizing sophisticated online infrastructure consisting of over 36 inauthentic websites to facilitate sanctions evasion. These websites impersonate ship registries, national maritime administrations, seafarer training organizations, protection and indemnity clubs, and classification societies from jurisdictions including Comoros, Benin, Bhutan, Cameroon, Chad, Equatorial Guinea, Gambia, Haiti, Malawi, Nicaragua, and Zambia. The infrastructure operates through three identified clusters designated Alpha, Bravo, and Charlie, which demonstrate technical overlaps suggesting a broader ecosystem supporting multiple sanctions evasion networks. Operators employ tactics including automated document generation, typosquatting, identity spoofing, and mutual endorsement loops between fraudulent entities. Attribution includes links to Indian web development company Oceaniek Technologies and two Syrian nationals. The infrastructure has documented connections to seventeen vesse…
🔖Rectifyq Taxonomies:
- relevancy: 🔴 Highly Relevant
- category: ⚔Threat
- sub-category: infra-profile
- sub-category: campaign-analysis
- topic: geopolitical
- target: broad-based
- MY-relevancy: relevant
🔖MISP Galaxies:
- producer= Recorded-Future
- mitre-attack-pattern=[]
MISP event uuid: 64d4b916-e459-44a4-80d0-636de8f9c850
Indicator of Compromise (IoCs)
type,value,comment
domain, imspanel.com, ''
domain, olymposnaval.com, ''
domain, beninmaritime.co, ''
domain, oceaniektechnologies.com, ''
url, http://beninmaritime.org/ship-registry, ''
url, http://static.eigbox.ne, ''
domain, alliance-scs.org, ''
domain, atlasregister.net, ''
domain, atlasregister.org, ''
domain, benin-maritime.org, ''
domain, beninmaritime.bj, ''
domain, beninmaritime.in, ''
domain, beninmaritime.net, ''
domain, beninmaritime.org, ''
domain, brunieshipclass.org, ''
domain, btn-shipreg.com, ''
domain, cameroonshipregistry.org, ''
domain, chad-maradmin.org, ''
domain, epnicaragua.com, ''
domain, epnicaragua.org, ''
domain, eqguinea-shipadmin.org, ''
domain, gove.bj, ''
domain, guve.bj, ''
domain, haiti-shipreg.com, ''
domain, hellasnaval.com, ''
domain, hellasnaval.net, ''
domain, hss-registry.org, ''
domain, imsnaval.com, ''
domain, isithin.com, ''
domain, marinegov.net, ''
domain, marinegov.org, ''
domain, medlloyd.online, ''
domain, medlloyd.org, ''
domain, mpabd-shipregistry.org, ''
domain, nauticacentro.com, ''
domain, nauticacentro.mx, ''
domain, niataregister.net, ''
domain, niataregister.org, ''
domain, pioneersmaritime.com, ''
domain, sasmaa.club, ''
domain, zambiamaritime.org, ''
domain, zambmaritime.org, ''
domain, zambshipadmin.org, ''
hostname, malawi.marinegov.net, ''
hostname, 150.160.96.66.static.eigbox.ne, ''
hostname, bma.gov.bj, ''
hostname, hellasnaval.net.olymposnaval.com, ''
hostname, imspanel.com.olymposnaval.com, ''
hostname, malawi.marinegov.org, ''
hostname, malawi.shipregistry.marinegov.org, ''
hostname, medlloyd.online.beninmaritime.net, ''
hostname, medlloyd.online.olymposnaval.com, ''
hostname, pdf.beninmaritime.co, ''
hostname, registry.zmgov.org, ''
Full IOCs available in Rectifyq’s MISP