Motor carriers are being targeted by a new phishing campaign involving fraudulent emails falsely claiming to come from the Federal Motor Carrier Safety Administration (FMCSA) and the U.S. Department of Transportation.

FMCSA warns carriers to stay vigilant, saying the messages are designed to look legitimate, often including professional-looking documents and official-appearing links, but are intended to steal sensitive information or solicit illegal payments.

FMCSA said official agency correspondence almost always comes from email addresses ending in ‘.gov’. In other situations — such as customer satisfaction surveys sent after someone contacts the FMCSA Contact Center — messages can come from a non-.gov address, but those surveys only request feedback and will not ask for personal, payment, or account information.

FMCSA further added that links in phishing emails typically lead to suspicious, non-.gov domains — for example, fmcsa.web.saferwebdattaconnect.pro. The agency added that it will never request payment or sensitive information (like UCR, PIN, SSN, EIN, or bank details) through unsolicited messages.

Carriers who are unsure about the legitimacy of a message should avoid clicking links, downloading attachments or responding to senders.

Fleets are encouraged to file a complaint with the FBI through their IC3 site and report suspicious emails to the FMCSA Contact Center or call 1-800-832-5660.