Overview
- Proofpoint reports intrusions at freight brokers and trucking carriers that enable loads to be redirected before reaching stores.
- The firm says it has high confidence the campaigns are coordinated with organized crime networks.
- Attackers deploy phishing, social engineering, credential stealers, and remote‑access malware to alter shipment details.
- Analysts observed nearly two dozen distinct campaigns in the past two months and linked activity to at least three groups.
- Stolen cargo is expected to be resold online or shipped overseas, with high‑value loads such as Apple shipments viewed as likely targets.