---
title: "Phishing Attacks On Logistics Companies: Learnings From The Latest Phishing Scheme | Phish Protection"
description: "Phishing is a social engineering exercise that plays on the psyche of the victim with the sole purpose of extracting as much critical information as possible."
image: "https://phishprotection.com/og/blog/phishing-attacks-logistics-companies-learnings-latest-phishing-scheme.png"
canonical: "https://phishprotection.com/blog/phishing-attacks-logistics-companies-learnings-latest-phishing-scheme/"
---

Quick Answer

The above statistics show the industrial sectors phishing attackers have most targeted. As per the graph, in the fourth quarter of 2020, logistics organizations have had a share of \*\*6.4% of the total phishing attacks\*\* on various industries. Given the way the logistics establishments have grown and expanded, especially during the Pandemic, \_the rate of phishing attacks on them is likely to increase in the future\_.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fphishing-attacks-logistics-companies-learnings-latest-phishing-scheme%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Phishing%20Attacks%20On%20Logistics%20Companies%3A%20Learnings%20From%20The%20Latest%20Phishing%20Scheme&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fphishing-attacks-logistics-companies-learnings-latest-phishing-scheme%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fphishing-attacks-logistics-companies-learnings-latest-phishing-scheme%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fphishing-attacks-logistics-companies-learnings-latest-phishing-scheme%2F&title=Phishing%20Attacks%20On%20Logistics%20Companies%3A%20Learnings%20From%20The%20Latest%20Phishing%20Scheme "Share on Reddit") [ ](mailto:?subject=Phishing%20Attacks%20On%20Logistics%20Companies%3A%20Learnings%20From%20The%20Latest%20Phishing%20Scheme&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fphishing-attacks-logistics-companies-learnings-latest-phishing-scheme%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2021/03/phishing-attack-prevention.jpg) 

_Phishing is a social engineering exercise that plays on the psyche of the victim with the sole purpose of extracting as much critical information as possible_. With this information, the con artists can manipulate data, take over networks, or steal financial credentials and identities. Organizations have to be aware of the menace at all times and keep their systems upgraded to counter the challenge. **Phishing attacks** on logistic companies are not a recent phenomenon. It has been around for a while. Among other organizations, _it is a threat for logistic establishments too the world over_.

![Phishing attack prevention](https://media.mailhop.org/phishprotection/images/2021/03/phishing-attack-prevention.jpg) 

The above statistics show the industrial sectors phishing attackers have most targeted. As per the graph, in the fourth quarter of 2020, logistics organizations have had a share of **6.4% of the total phishing attacks** on various industries. Given the way the logistics establishments have grown and expanded, especially during the Pandemic, _the rate of phishing attacks on them is likely to increase in the future_. 

### Effects Of Phishing On Companies And Individuals

_The phishing attempts and attacks on logistics organizations can negatively impact the business and its end-users in multiple ways._

#### The Impact On Business

It has been estimated that [93% of the UK organizations](https://www.carbonblack.com/press-releases/vmware-releases-cybersecurity-threat-survey-report-detailing-increased-attack-volume-and-breach-levels-in-the-united-kingdom/) were targeted with malware, while the IT Security community of the United Kingdom reported a[ rise of 88%](https://www.carbonblack.com/press-releases/vmware-releases-cybersecurity-threat-survey-report-detailing-increased-attack-volume-and-breach-levels-in-the-united-kingdom/) in phishing incidents. Most of these _attacks were related to stealing data, and some of the sufferers were logistics companies_.

##### Reputational Loss

Loss of reputation is one of the significant impacts of a phishing attack. _A reputational failure is catastrophic for any organization_. Translated into money, it is enormous, and it will take a lot of time and effort to reverse the effect. It takes years for organizations to build a reputation based on trust. A **phishing attack** can ruin that in a fraction of that time.

##### Loss Of Company Value

The reputational damage extends beyond the customer. The investor’s confidence in the brand and the company is shaken, which will have a cascading effect on its finances. _No investor would want to keep their money in an establishment that is suffering from an image problem_. The drastic drop in share prices is one of the ways the organization suffers.

##### Fines By Regulatory Authorities

On top of the financial loss and reputation loss, there are huge fines imposed by regulatory authorities. _The Government of every country is stringent when it comes to protecting the consumer and investor_. These fines also burden the organization, and it may take years before it may recover from the loss. **Protecting customer data** is of paramount importance, and any failure to do so will have drastic penalties imposed on the organization.

##### Disruption Of Business

_Disruption of business for any organization is similar to sounding a death knell_. For logistics providers, it is more so. The slightest change in cash flow has ill effects on these organizations, and **phishing attacks** can bring about that effect.

### The Impact On End-users

> “Zero-day phishing URLs have an average lifespan of just 12 hours before they’re added to blocklists. During that window, traditional signature-based filters are blind. Our real-time behavioral analysis catches these threats by pattern, not by signature - which is how we detect attacks that no database has seen yet.” - **Adam Lundrigan**, CTO, DuoCircle

The phishing attacks on logistics corporations affect their business and have a disastrous impact on their customers.

#### Financial Losses

The effect of a phishing attack on the customers of a logistics service can have an even more severe debilitating effect compared to the logistic companies themselves. The end-users may be individuals or other businesses whose activities may be interrupted due to the disruption in logistics, resulting in a severe **financial setback** for their business. 

#### Identity Theft

_Identity theft is a serious crime and often ends up worse for end-users_. A **phishing attack** by malicious actors on a logistics corporation can provide access to confidential and sensitive customer information stored in the organization’s information systems and databases. The stolen identity is often misused to gain access to more critical data or top secret information. The vicious cycle keeps continuing. Furthermore, they may use the identity for obtaining other financial benefits by [employing impersonation](/products/email-impersonation-protection/), which is one of the hallmarks of a phishing agent. _They endanger the lives and careers of victims through social engineering tactics_.

### Learning From The Latest Phishing Hit

_Phishing attacks in the logistics sphere may not be directly on the organizations themselves_. Sometimes, a mass attack on its users could taint the reputation and interrupt the logistics organization’s business, besides creating trouble and financial losses to the end-users themselves. In one of the most [recent and audacious phishing attacks](https://www.itpro.co.uk/security/phishing/358706/10000-emails-hit-with-fake-fedex-and-dhl-phishing-attacks) related to the logistics domain, IT Security researchers have discovered that malicious actors **targeted almost 10,000 mailboxes** of end-users.

_The attacks were targeted at Microsoft email users to steal credentials_. The attackers **spoof-phished the pages** that were hosted on legitimate domains. The email titles and the subject line were enough to mask the real intention of the endeavor. The emails made hapless victims believe that they had come from DHL and FedEx. Since similar emails from DHL and FedEx usually keep appearing, it is quite normal for many users to follow the email instructions and act accordingly instead of looking for inconsistencies. Once they clicked on the provided link, it took them to a supposedly hosted file on Quip. The spoofed page impersonated the logistics giant and gained enough trust for users to continue with the process. They were then taken to a Microsoft Login portal page and asked to log in. _The entire process was designed to harvest email addresses for later usage_.

The phishing attack on DHL included an email campaign sent to the victims informing them of a parcel lying at the nearest pick-up point but could not be delivered due to an incorrect physical address. Subsequently, an HTML page opens and asks the recipient to type in their login credentials. As with the FedEx attack, this too would return an incorrect email notification, no matter what the information typed in is.

![Anti phishing service](https://media.mailhop.org/phishprotection/images/2021/03/anti-phishing-service-7543.jpg) 

### Tips For Users On Phishing Prevention And How To Keep Safe

Here are the general fundamental tips you should follow to [prevent phishing](/) attacks as above one and keep your information assets from falling into threat actors’ hands.

- _Never open unsolicited emails or click on unknown links_.
- Never discuss critical data over the phone with someone not entitled to know the information.
- It is pertinent that businesses undertake rigorous [awareness sessions](/products/phishing-awareness-training/) and training programs for their staff to make them aware of phishing pitfalls.
- The up-gradation of software and IT Security tools is a must.
- Anti-phishing and [ransomware protection](/products/malware-and-ransomware-protection/) tools are a must for every organization and individual today.

### Final Words

In a world connected by logistics, organizations must keep their wheels rolling at any cost. _Phishing attacks can disrupt the business through their malicious adventures_. Logistics companies must implement [anti-phishing services](/products/advanced-threat-defense/) within the organization and educate their customers of the same. The more one is aware of pitfalls, the lesser the chances of getting scammed.

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Phishing Attacks On Logistics Companies: Learnings From The Latest Phishing Scheme","description":"Phishing is a social engineering exercise that plays on the psyche of the victim with the sole purpose of extracting as much critical information as possible.","url":"https://phishprotection.com/blog/phishing-attacks-logistics-companies-learnings-latest-phishing-scheme/","datePublished":"2021-03-10T10:11:42.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2021-03-10T10:11:42.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/phishing-attacks-logistics-companies-learnings-latest-phishing-scheme/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1152,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2021/03/phishing-attack-prevention.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Phishing Attacks On Logistics Companies: Learnings From The Latest Phishing Scheme","item":"https://phishprotection.com/blog/phishing-attacks-logistics-companies-learnings-latest-phishing-scheme/"}]}
```