Phishing Attacks Lead to Theft in the Shipping Industry

 Stu Sjouwerman

3Apr

---

• https://platform.twitter.com/widgets/tweet_button.2f70fb173b9000da126c79afe2098f02.en.html#dnt=false&id=twitter-widget-0&lang=en&original_referer=https%3A%2F%2Fblog.knowbe4.com%2Fphishing-attacks-lead-to-theft-in-the-shipping-industry%3Futm_medium%3Demail%26_hsenc%3Dp2ANqtz–20egtIsd450lnE-spKVgzNKlP1QBtqNLBVxkqrvXEO9qtPwzfPKSuRwdN_zFzOVDxM-z0zEj3fg_87rs00itg7-FHGA%26_hsmi%3D355105902%26utm_content%3D355105902%26utm_source%3Dhs_email&size=m&text=Phishing%20Attacks%20Lead%20to%20Theft%20in%20the%20Shipping%20Industry&time=1743746365331&type=share&url=https%3A%2F%2Fblog.knowbe4.com%2Fphishing-attacks-lead-to-theft-in-the-shipping-industry
• Share
• https://www.facebook.com/v3.0/plugins/share_button.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfb0b4b823c7edab26%26domain%3Dblog.knowbe4.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fblog.knowbe4.com%252Ffac0e8b26018c9af6%26relation%3Dparent.parent&container_width=0&href=https%3A%2F%2Fblog.knowbe4.com%2Fphishing-attacks-lead-to-theft-in-the-shipping-industry&layout=button_count&locale=en_US&sdk=joey

---

Phishing attacks are driving a surge in “double brokering” scams in the shipping industry, according to Christian Reilly, Cloudflare’s Field CTO for EMEA.

In an article for TechRadar, Reilly explains that these scams have risen by 400% since 2022, and 50% of freight brokers name it as their top concern.

“Here’s how they work: Scammers pose as legitimate freight brokers or create fake transportation companies,” Reilly writes. “Using phishing emails, they gain access to shipment details – such as pick-up, destination, size, and scheduling. They then offer a lower rate than competitors for their services, in order to win contracts from unsuspecting businesses.

Once they secure the job, instead of transporting the shipment themselves, they pass it off to a legitimate carrier – often a real trucking company that believes it has been hired for a normal job. The scammer collects payment from the original client but never pays the actual carrier, pocketing the money and then disappearing – long before the fraud is discovered.”

Social engineering attacks are particularly effective against the shipping industry because business moves so fast and employees rely heavily on email for communication.

“Phishing is the go-to tactic for double brokering scams because it doesn’t rely on hacking technical systems – it preys on human error,” Reilly says. “A simple click on a malicious link or an unwitting disclosure of shipment details can be enough to set a scam in motion. Since email is so ingrained in the supply chain, it provides cybercriminals with an easy, high-reward entry point.”

New-school security awareness training can give your organization an essential layer of defense against social engineering attacks.

“The foundation of any cybersecurity strategy is awareness,” Reilly concludes. “Phishing may be subtle, but it’s preventable. Employees must be trained to recognize the warning signs of fraudulent emails – such as unusual variations, where cybercriminals swap out characters or add extra words like “LLC” or “INC” to make an email look legitimate. When in doubt, always verify. A quick call to confirm the sender’s identity before sharing sensitive shipment information can prevent costly fraud.”

TechRadar has the story.

---

Request A Demo: Security Awareness Training

Platform and see how easy it can be!

PS: Don’t like to click on redirected buttons? Cut & Paste this link in your browser: https://info.knowbe4.com/one-on-one-demo-partners?partnerid=001a000001lWEoJAAW