Minnesota trucking company hit in 2nd ransomware attack

A tractor-trailer of Minnesota trucking company Bay & Bay traveling on a highway.

After some of Minnesota trucking and logistics company Bay & Bay Transportation’s IT systems started acting up on Dec. 1, it soon became apparent that the cause was something familiar — and alarming: a ransomware attack. 

Hackers intent on extorting the Eagan-based carrier had deployed malware to encrypt data on the company’s systems. The company had been down this road before. A ransomware attack in 2018 crippled its systems and led the company to pay the criminals.

“The good part of it is we...


Loaded and Rolling: Cybersecurity risks rise; Schneider grows dedicated fleet

Cybersecurity and large fleets: Risks of cyberattacks on the rise
(Photo: Jim Allen/FreightWaves)

Cybersecurity is becoming a major topic in trucking due to recent publicized ransomware attacks against motor carriers. Ransomware is a type of malware, with users locked out of their systems or files and data held hostage unless the company or user pays a fee to regain access. The time Sensitive nature of trucking, customer expectations for deliveries and high costs associated with disrupted...


6 lessons learned about cybersecurity and freight in 2021

An illustration of a hacker holding a laptop with a tractor trailer to the right.

It was once again another rough year for cybersecurity and freight. The main reason: ransomware attacks, in which criminals encrypt data and demand payment, sometimes in the millions of dollars, in exchange for unlocking it. Even though the U.S. government has been taking an increasingly aggressive approach to fighting ransomware, the attacks have continued. They hit companies across the supply chain, including trucking, logistics, freight factoring, freight forwarding — and even fuel...

TSA directs freight railroads to bolster cybersecurity, report incidents

Chemical rail cars sit on a track to illustrate an article about new cybersecurity requirements in the freight rail sector.

Freight railroads will be required to report cyber incidents within 24 hours as part of a new Transportation Security Administration directive issued Thursday aimed at strengthening cybersecurity in the sector.

The directive, which takes effect Dec. 31, also mandates that all freight rail operators designate a cybersecurity coordinator, develop an incident response plan and conduct a vulnerability assessment. TSA also issued similar directives for passenger rail and public transit operators.



Cybercriminals selling access to shipping, logistics firm networks, report warns

A container ship travels on the water to illustrate an article about cybercriminals selling access to shipping firms

Cybercriminals have attempted to sell network access to multiple transportation, logistics and shipping companies in recent months, highlighting the risk of devastating ransomware attacks in the supply chain, a new report warns. 

Intel 471, a cybercrime intelligence firm, observed seven instances since July of brokers advertising network credentials or other types of network access. The companies affected consist of a Japanese container shipping provider, a U.S. transportation management and...


Marten Transport discloses cyberattack, warns employee data could be at risk

A tractor-trailer of Marten Transport travels on a highway with mountains in the background.

Wisconsin-based trucking company Marten Transport has confirmed it was the victim of a cyberattack earlier in October and warned that employee data could have been compromised, according to a Securities and Exchange Commission filing on Wednesday.

Marten said in the filing that the company detected the attack on Oct. 3 and were accessed and encrypted as part of the incident. It came three days after a cybercriminal group posted a claim — which was quickly taken down — to the dark web alleging...


TSA to require air, rail operators to report cybersecurity incidents

A UPS plane's tail at an airport with air cargo below to illustrate an article about cybersecurity reporting requirements for the rail and air sectors.

U.S. rail and air operators will be required to report cybersecurity incidents under new Transportation Security Administration rules, Homeland Security Secretary Alejandro Mayorkas said on Wednesday

TSA will issue directives later this year that will apply to “higher-risk railroad entities,” passenger and all-cargo airlines, and airport operators. The directives will require the appointment of cybersecurity coordinators, while rail entities will need to have contingency and recovery plans as...


Ransomware attack on Forward Air may have exposed sensitive employee data

A tractor-trailer with the logo Forward Air seen from the right year side on a highway to illustrate an article about a ransomware attack on the company.

The devastating ransomware attack that hit Forward Air Corp. in December may have exposed sensitive personal information of current and former employees, according to data breach notices sent by the trucking giant.

The Tennessee-based firm sent letters to the attorney general offices in at least four states — California, Vermont, Montana and New Hampshire — on Sept. 24 as it began notifying the affected people. They warn that information including names, addresses, birthdates, and Social...


Claims of ransomware attacks on factoring firm eCapital shrouded in mystery

An illustration of four skeleton figures in front of computers representing hackers for an article about a ransomware attack

Two ransomware gangs have separately claimed they attacked and stole data from freight factoring provider eCapital, raising the question of whether the firm got hacked twice.

The answer isn’t so clear. 

An eCapital spokesperson initially said the company had “recently sustained a sophisticated cybersecurity incident” after FreightWaves inquired about an attack announced by the Lorenz group on the dark web in late July. 

“Due to our pre-existing security measures, we were equipped with sufficient...


Join Our Newsletter
Enter your email to receive a weekly round-up of shipping news.