FBI Warns Cybercriminals Driving $725M Cargo Theft Surge

Executive Summary

The U.S. Federal Bureau of Investigation (FBI) has issued a warning to the transportation and logistics sector about a sharp increase in cyber-enabled cargo theft, with estimated losses in the United States and Canada reaching nearly $725 million in 2025. The agency attributes the surge to cybercriminals who are increasingly targeting logistics IT systems to intercept and redirect high-value shipments, according to a BleepingComputer report.

Technical Analysis

The FBI's alert, distributed through its private industry notification channels, describes a pattern where threat actors compromise transportation management systems (TMS), email accounts, and other digital infrastructure used by freight brokers, carriers, and shippers. Once inside, attackers alter pickup and delivery instructions, rerouting cargo to locations under their control. The stolen goods are then quickly resold, often through online marketplaces or fencing operations.

The agency noted that the $725 million figure represents reported losses only, and the actual total is likely higher due to underreporting. The attacks are not limited to any single mode of transport — trucking, rail, and maritime shipments have all been targeted. The FBI specifically highlighted that cybercriminals are using stolen credentials and phishing campaigns to gain initial access to logistics platforms.

Mitigations & Recommendations

The FBI recommends that transportation and logistics organizations implement multi-factor authentication (MFA) on all externally facing systems, particularly those handling shipment scheduling and routing. Companies should also monitor for anomalous changes to delivery instructions and verify any last-minute routing changes through out-of-band communication channels. Employee training on phishing recognition and credential hygiene is advised, as is segmenting logistics IT systems from corporate networks to limit lateral movement in the event of a compromise.