The FBI is alerting carriers and freight brokers to a sharp rise in account hacking and cargo theft schemes. North American cargo theft losses jumped 60% year-over-year in 2025, with digital attacks now replacing traditional theft methods.
Cybercriminals are increasingly targeting the logistics sector by compromising freight broker accounts and using them to deceive carriers, according to FBI warnings. The tactic exploits trust within supply chains, allowing attackers to redirect shipments or extract payments under false pretenses.
The Attack Pattern
Hackers gain unauthorized access to broker platforms, then manipulate carrier communications to execute fraudulent freight movements. Carriers, operating under normal business assumptions, fulfill shipments that redirect cargo or transfer funds to attacker-controlled accounts. The scheme capitalizes on the speed and volume of logistics operations.
Rising Losses
The 60% year-over-year increase in cargo theft losses signals a significant shift in criminal methodology. Traditional physical theft—hijacking trucks or breaking into warehouses—is giving way to more scalable digital attacks. Cybercriminals can compromise multiple accounts simultaneously and operate across jurisdictions with minimal physical presence.
Industry Impact
The surge affects carriers, brokers, and shippers across North America. High-value shipments in electronics, pharmaceuticals, and consumer goods face elevated risk. The interconnected nature of freight networks means a single compromised account can cascade into multiple fraudulent transactions before detection.
Response Measures
The FBI recommends stronger authentication protocols, including multi-factor authentication on broker platforms. Industry participants should verify communications through independent channels before executing shipments and implement transaction monitoring systems. Enhanced employee training on phishing and account compromise tactics is also critical.
Logistics companies face pressure to balance operational efficiency with security. The rise of cyber cargo theft demonstrates how digital infrastructure vulnerabilities in traditional industries can create substantial financial losses. Organizations must adopt authentication and verification practices designed for high-volume, time-sensitive operations.
Partnered Health, one of Australia's largest healthcare providers, has disclosed a cyber-attack affecting 21 clinics across Sydney, Melbourne, and Canberra. Personal information and medical records were compromised in the breach.
Security firm Intruder has developed an AI-powered system that automatically identifies previously unknown software vulnerabilities by combining code analysis with large language models. The tool already discovered and exploited a WordPress plugin zero-day.
U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.