Watch Now

Ransomware hackers claim attack on Texas customs broker

Group leaks documents from Laredo-based Daniel B. Hastings

Texas-based customs broker Daniel B. Hastings, which specializes in U.S.-Mexico shipments, was targeted in an apparent ransomware attack. (Photo: FreightWaves staff)

Ransomware hackers have claimed they attacked a Texas customs broker and freight forwarder Daniel B. Hastings, posting files they purportedly stole in an apparent attempt to extort the Laredo-based company. 

The extent of the apparent attack and data breach was not immediately clear. Hastings did not respond to FreightWaves’ requests for comment.

The files posted by the ransomware group Conti on Saturday appear authentic. They include completed U.S. Customs and Border Protection documents for shipments involving multiple countries, companies and modes.

Daniel B. Hastings has five offices in Texas, specializing in U.S.-Mexico cross-border shipments. The company is affiliated with two other customs brokers: Casas International and Pacific Brokerage, as part of CPH Group.

Multiple companies in supply chain targeted in ransomware attacks

Hastings represents just the latest supply chain company targeted by ransomware groups.  Conti recently claimed responsibility for attacks on U.S. flatbed carrier Daseke and Canadian trucking company Manitoulin Transport. Other groups have attacked French shipping giant CMA CGM and TFI International, Canada’s largest trucking and logistics company.

Conti and similar groups begin posting a small number of stolen files after companies refuse to pay a ransom to have system access restored and to secure a promise that hacked data will not be posted.

The companies subject to public data leaks likely represent a fraction of all ransomware attacks. Firms, sometimes with ransomware insurance, often handle the incidents and payments quietly.

Security experts say the willingness to pay ransomware groups allows them to flourish. Beyond the rash of incidents targeting the supply chain, hacking groups have hit companies and governments across the world.

Ransomware groups’ immediate goal is to make money by extorting their targets. But they also leverage the data and systems of their victims’ access to stage other attacks through phishing emails. 

“Anyone that has dealings with that company is at risk for being attacked,” Brett Callow, a threat analyst with Emsisoft, told FreightWaves. 

Click for more FreightWaves articles by Nate Tabak

Daseke targeted in cyberattack as ransomware groups hit supply chain

Trucker held in US-Canada marijuana case asks court to let him go home

Truckers charged in record $336M US-Canada tobacco-smuggling case

F3: Future of Freight Festival


The second annual F3: Future of Freight Festival will be held in Chattanooga, “The Scenic City,” this November. F3 combines innovation and entertainment — featuring live demos, industry experts discussing freight market trends for 2024, afternoon networking events, and Grammy Award-winning musicians performing in the evenings amidst the cool Appalachian fall weather.

One Comment

  1. Mrbigr504

    Next up, Intermodal and what the driver’s are really supposed to get paid! Yeah I can’t wait to see those documents get out!

Comments are closed.

Nate Tabak

Nate Tabak is a Toronto-based journalist and producer who covers cybersecurity and cross-border trucking and logistics for FreightWaves. He spent seven years reporting stories in the Balkans and Eastern Europe as a reporter, producer and editor based in Kosovo. He previously worked at newspapers in the San Francisco Bay Area, including the San Jose Mercury News. He graduated from UC Berkeley, where he studied the history of American policing. Contact Nate at [email protected].