DP World Australia, which operates approximately 40% of Australia’s container port throughput across terminals in Sydney, Melbourne, Brisbane, and Fremantle, suffered a cyberattack on November 10, 2023, forcing the company to take its systems offline and halt port operations for approximately three days. The attack was attributed to exploitation of the Citrix Bleed vulnerability (CVE-2023-4966), a critical session token hijacking vulnerability in Citrix NetScaler ADC/Gateway that was being widely exploited by ransomware groups (including LockBit) in late 2023. The operational disruption caused a backlog of approximately 30,000 shipping containers at Australian ports, creating significant supply chain disruptions. The Australian Cyber Security Centre (ACSC) and federal government coordinated the incident response. Australia’s Home Affairs Minister Clare O’Neil described it as a significant national cyber incident. The attack highlighted the vulnerability of critical transport infrastructure and demonstrated how port disruption can cascade quickly into broader economic and supply chain impacts. The incident contributed to Australia’s development of a mandatory cyber incident reporting framework for critical infrastructure operators.