Seattle, Washington-based logistics giant Expeditors International on Sunday announced the disruption of its global systems as a result of a cyberattack.
The Fortune 500 company said it had shut down most of its operating systems, and in an update shared on Monday informed customers that its operations had still been impacted.
“While our systems are shut down we will have limited ability to conduct operations, including but not limited to arranging for shipments of freight or managing customs and distribution activities for our customers’ shipments,” the company stated.
The company described it as a “targeted cyberattack,” but shared no other details. Based on its brief description of the incident, it may have been a ransomware attack.
A majority of sophisticated ransomware attacks involve not only the encryption of files on compromised systems, but also the theft of sensitive data, which the cybercriminals threaten to publish on dedicated leak websites if the victim refuses to pay a ransom.
SecurityWeek has checked the leak websites of several major ransomware groups and has not seen any mention of Expeditors, but they don’t immediately add the name of a victim to these sites — victims are given time to pay up or try to negotiate.
“We are incurring expenses relating to the cyber-attack to investigate and remediate this matter and expect to continue to incur expenses of this nature in the future,” Expeditors said. “Depending on the length of the shutdown of our operations, the impact of this cyber-attack could have a material adverse impact on our business, revenues, results of operations and reputation.”
[ READ: Logistics Supply Chain Targeted by Both Cybercriminals and Nation States ]
Expeditors is a service-based company that provides logistics solutions through a network of more than 350 locations across over 100 countries. It provides supply chain performance, transportation, customs, and warehousing services.
Expeditors is not the only logistics giant hit by ransomware in recent months. In December, Hellmann confirmed that cybercriminals had exfiltrated data from its systems during a ransomware attack.
“The cost of outages attributed to ransomware can be very impactful to companies of all sizes,” commented Nasser Fattah, North America Steering Committee Chair at third-party risk assurance firm Shared Assessments. “When we look at revenue loss, time, and resources to identify, contain, and eradicate ransomware to systems recovery, the overall financial loss to a company can be staggering. Add to this customer impact, including churn, and failing to meet contractual obligations, can further exacerbate the situation.”
“For this reason, it is important to a) do ransomware tabletops to understand ones’ strengths and weaknesses in defending against ransomware, as well as remediating if ransomware takes hold, and b) understand all costs that an organization can incur – which is important for the business to partake in the tabletops,” Fattah added.
Related: Cookware Distribution Giant Meyer Discloses Data Breach
Related: French Ministry of Justice Targeted in Ransomware Attack
Related: Swissport Investigating Ransomware Group’s Data Leak Claims

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.
More from Eduard Kovacs
- Unpatched Econolite Traffic Controller Vulnerabilities Allow Remote Hacking
- Google Fi Data Breach Reportedly Led to SIM Swapping
- Microsoft’s Verified Publisher Status Abused in Email Theft Campaign
- British Retailer JD Sports Discloses Data Breach Affecting 10 Million Customers
- Meta Awards $27,000 Bounty for 2FA Bypass Vulnerability
- Industry Reactions to Hive Ransomware Takedown: Feedback Friday
- US Reiterates $10 Million Reward Offer After Disruption of Hive Ransomware
- Hive Ransomware Operation Shut Down by Law Enforcement
Latest News
- Malicious NPM, PyPI Packages Stealing User Information
- VMware Confirms Exploit Code Released for Critical vRealize Logging Vulnerabilities
- 98% of Firms Have a Supply Chain Relationship That Has Been Breached: Analysis
- Dutch, European Hospitals ‘Hit by Pro-Russian Hackers’
- Gem Security Gets $11 Million Seed Investment for Cloud Incident Response Platform
- Ransomware Leads to Nantucket Public Schools Shutdown
- Stop, Collaborate and Listen: Disrupting Cybercrime Networks Requires Private-Public Cooperation and Information Sharing
- Boxx Insurance Raises $14.4 Million in Series B Funding
