FMCSA Releases Safety Audit Email Phishing Alert
Do you have an email from the "FMCSA" in your inbox? You may want to think twice before clicking any links.
The Federal Motor Carrier Safety Administration (FMCSA) has issued an alert regarding phishing attempts targeting motor carriers and the companies it regulates.
Criminals are posing as FMCSA auditors through fraudulent emails, attempting a "fake safety audit" scam. These emails are sent to registered entities, including motor carriers, and falsely claim the need to schedule a safety audit.
The deceptive email includes a link that appears to lead to a legitimate URL on the Safer website, mimicking FMCSA's MCS-150 form updates. However, the linked page contains fields requesting sensitive information such as the carrier's PIN, Employer Identification Number (EIN), and Social Security number.
The FMCSA warns that providing these details would grant unauthorized access to the perpetrator, compromising the FMCSA account. With such access, criminals could manipulate information to impersonate carriers and engage in fraudulent freight transactions.
The FMCSA provided this image of the fake web page, linked in the email.
How to Avoid the Email Phishing Scam
At first glance, the email appears highly convincing as if it originates from FMCSA. But the agency emphasizes that official safety audit communications typically come directly from an FMCSA-dedicated mailbox or the responsible entity within the State assigned to conduct the audit. Legitimate emails from FMCSA usually have a .gov extension.
To ensure the authenticity of any suspicious email or communication, companies are encouraged to verify with the appropriate agency or contact their FMCSA Division Office directly. A list of division offices can be found here.
Foley will continue to report on this federal matter as additional updates are released.