How ready is your haulage business for a cyber attack?

Office staff and drivers complete cyber awareness training at least once a year

Drivers know how to report a suspicious email or text

Shared passwords are prohibited across the business

Leavers have all accounts and access removed within 24 hours

Multi-factor authentication is enabled on email, TMS and admin tools

Business email is protected with spam, phishing and impersonation filtering

All laptops and desktops run supported, patched operating systems

Remote access to the office network requires MFA and is restricted to known users

TMS, finance and customer data are backed up daily

Backups have been restored and tested in the last 90 days

Critical operational data lives off the local server (cloud or offline copy)

There is a documented manual fallback if the TMS goes offline for a shift

IT support provider has a written service level for security incidents

Software and telematics vendors are reviewed for security at onboarding

Customers and brokers can verify a payment change request through a second channel

Third parties with system access use named accounts, not shared logins

There is a one-page incident response plan with named roles

Out-of-hours contacts for IT, insurer and legal are documented

The senior team has rehearsed a cyber incident tabletop in the last 12 months

Cyber insurance is in place and the policy contacts are known