The freight industry is now getting hit with Phishing attacks

Last year, we blogged and podcasted about the freight industry starting to get hit with phishing attacks.

Now, there is a campaign that i out that will now take advantage of these folks who probably don’t know what’s happening.

According to the beginning of the article, this campaign has stolen over 1600 differentt credentials.

The article goes in to detail on exactly how this works, and who was involved in the research.

This article is titled Phishing campaign targets freight and logistics orgs in the US, Europe so tell your folks in these industries that they need to be on the lookout.

I don’t want to take the article apart as it is lengthy, but do listen to podcast 262 as we do tlk about this and link to a different article that covered this at the time.

Let me know what you think companies should be taught in regards to this so they don’t get taken advantage of.

I say that there needs to be more done, and I understand registrars can’t have a direct hand in the abuse, but 52 domains, including using TLD’s that nobody ever heard of is not necessarily new and should be your first sign.

I’ve rightly gone after the registrars, as they do have terms and conditions that say in part that you shouldn’t use the domain to harm people, but of course, its not enforced because there’s no monitoring.

Chat GPT did indicate to me during my discussions that the registrars can’t do anything and that there are things starting where abuse is being taken down. The abuse does happen with the hosting service, not necessarily the registrar, and that makes sense. But the fact is, we’ve seen ICANN approve all these new TLD’s and I know very few legitimate uses for any of them.

Read the entire article for complete details, so you can tell your friends what to look for. Maybe some of them work in these companies and can benefit from the info.

What do you say?