There’s a new threat moving through our industry, and it’s not mechanical, regulatory, or operational.

It’s digital—and it’s convincing.

Motor carriers across the country are being targeted by increasingly sophisticated phishing scams, many of them impersonating the Federal Motor Carrier Safety Administration, USDOT, or systems tied to SAFER and registration platforms. Some are even using domains like “saferanalyze.info” or similar lookalike addresses designed to feel legitimate at a glance.

And that’s the problem.

They don’t look fake anymore.

The New Reality: Professional-Looking Fraud

FMCSA has already issued warnings about an “aggressive phishing campaign” targeting carriers with emails that appear official—but are anything but. (FMCSA)

These emails:

• Use official logos and formatting
• Reference real programs (SAFER, USDOT, compliance updates)
• Include links that look legitimate
• Create urgency (“Immediate Action Required”)

But the intent is simple:

• Steal login credentials
• Collect sensitive business data
• Demand fraudulent payments

And they’re getting better at it.

What We’re Seeing in the Field

Across FMCSA alerts and industry reports, several patterns are emerging:

1. Fake “Compliance” or “Validation” Emails

You may see messages telling you:

• Your registration needs verification
• Your USDOT status is at risk
• You must upload documents immediately

These often link to domains that mimic legitimate systems—but they are not FMCSA-controlled platforms. (FMCSA)

2. Lookalike Domains (Like saferanalyze.info)

Scammers are using domains that sound right:

• “safer…”
• “fmcsa…”
• “dot…”

But when you look closely, they don’t end in .gov.

That’s your tell.

FMCSA is clear:

Official websites and emails almost always use “.gov” domains. (FMCSA)

Anything else should immediately raise suspicion.

3. Requests FMCSA Will Never Make

Let’s make this simple.

FMCSA will never:

• Ask for SSN, EIN, or banking info via email
• Request payment through unsolicited messages
• Demand immediate action with threats or deadlines

If you see that, it’s not compliance—it’s a scam. (FMCSA)

4. “Too Clean” Doesn’t Mean Legitimate

Here’s where people get caught:

These emails don’t look sloppy anymore.

They’re polished. Structured. Professional.

In fact, FMCSA specifically warns that these scams often include:

“professional-looking documents and legitimate-looking links” (TTNews)

That’s the trap.

Why This Matters Operationally

This isn’t just an IT issue. This is a safety system issue.

If someone gains access to your:

• FMCSA Portal
• USDOT registration
• Company credentials

They can:

• Alter your records
• Hijack your identity
• Disrupt your operations
• Create exposure you don’t even know exists

We spend a lot of time talking about defensibility.

This is part of it.

Because if your systems are compromised, the question becomes:
“What controls did you have in place to prevent it?”

A Simple Framework: How to Stay Out of Trouble

If you remember nothing else, remember this:

1. Trust the Domain, Not the Logo

• Must end in .gov for FMCSA
• Hover over links—don’t just read them

2. Never Click First

• Go directly to official sites
• Log in through your normal process

3. Slow Down Urgency

Scammers rely on pressure:

• “Immediate action required”
• “Account suspension pending”

Real compliance doesn’t operate like that.

4. Control Access Internally

• Know who manages your FMCSA Portal
• Limit access points
• Verify changes

5. When in Doubt—Verify

Use official channels:

• FMCSA Contact Center
• Known phone numbers
• Direct website access

Not the link in the email.

Leadership Takeaway

This is one of those moments where safety culture extends beyond the yard, the truck, and the driver.

It extends to your systems.

You wouldn’t let an unverified driver take your truck down the road.
Don’t let an unverified email into your operation.

Because the threat isn’t obvious anymore.

It’s dressed like compliance.

Final Thought

Phishing works for one reason—it looks just real enough to pass.

Your job isn’t to spot what’s obviously wrong.

Your job is to question what looks right.

Stay sharp. Stay skeptical. Stay in control.

Make it Safe. Make it Personal. Make it Home.