Cyber-Enabled Cargo Crime: How Cybercrime Tradecraft Is Used to Steal Freight

The transportation sector is now a prime target for cyber‑enabled cargo crime, where threat actors apply ransomware‑style tactics to steal physical goods. By harvesting publicly available carrier registries and compromising dispatch emails, criminals can alter bills of lading, create fraudulent carriers, and redirect loads of high‑value items—pharmaceuticals, electronics, and perishable foods—into black‑market channels. The financial impact is stark: Verisk CargoNet reports $725 million in cargo‑theft losses for 2025, a fraction of the $21 billion overall cybercrime figure disclosed by the FBI’s IC3, underscoring the scale of the problem.

Vulnerability stems from the industry’s reliance on legacy communication tools and thin‑margin business models. Small‑to‑midsize fleets often forgo multi‑factor authentication, robust vendor‑management, and email‑security solutions because of limited budgets and staffing. Public data such as USDOT numbers and FMCSA registrations provide a ready‑made reconnaissance set for attackers, while phishing remains the most effective entry point. When a compromised email injects false routing instructions, the loss can be immediate and irreversible, leaving carriers with millions in unrecoverable liability and damaged reputations.

Recognizing the threat, the National Motor Freight Traffic Association (NMFTA) launched a free Cybersecurity Cargo Crime Reduction Framework, mapping NIST and CIS controls to freight‑theft vectors. The organization also operates the Freight Fraud Prevention Hub and hosts the NMFTA 2026 Cybersecurity Conference, the only North‑American event dedicated to securing the logistics supply chain. These resources aim to equip even the smallest carriers with practical, cost‑effective defenses, while inviting broader cybersecurity talent to address a critical infrastructure challenge.