Boyd Bros Transportation & WTI Transport Hit by Ransomware Attack, Exposing Sensitive Data
On May 12, 2026, Boyd Bros Transportation LLC and WTI Transport, two Alabama-based flatbed trucking carriers, detected unauthorized access to their computer systems. The companies, which operate a fleet serving the eastern two-thirds of the U.S., specialize in transporting steel and building materials and maintain terminals in Alabama, Georgia, and North Carolina.
An investigation confirmed the incident as a ransomware attack, with the hacking group CHAOS claiming responsibility. The group announced the breach on a dark web forum on May 17, 2026, threatening to release stolen data. While the companies blocked further unauthorized activity, the breach exposed sensitive personal information, including:
- Names
- Social Security numbers
- Addresses
- Email addresses
- Dates of birth
- Contact details
- Driver’s license information
Affected individuals including employees, drivers, and others were notified by mail on June 22, 2026. The law firm Shamis & Gentile P.A. is investigating potential legal action for those impacted, citing possible compensation for damages. The incident underscores the growing threat of ransomware attacks targeting supply chain and logistics sectors.
Source: https://www.claimdepot.com/investigations/boyd-bros-transportation-data-breach-2026
WTI Transport TPRM report: https://www.rankiteo.com/company/wti-transport-inc-
Boyd Bros Transportation LLC TPRM report: https://www.rankiteo.com/company/boyd-bros-transportation-inc-1
"id": "wtiboy1782161141",
"linkid": "wti-transport-inc-, boyd-bros-transportation-inc-1",
"type": "Ransomware",
"date": "6/2026",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'Employees, drivers, and others',
'industry': 'Logistics/Trucking',
'location': 'Alabama, USA',
'name': 'Boyd Bros Transportation LLC',
'type': 'Company'},
{'customers_affected': 'Employees, drivers, and others',
'industry': 'Logistics/Trucking',
'location': 'Alabama, USA',
'name': 'WTI Transport',
'type': 'Company'}],
'customer_advisories': 'Notified affected individuals by mail on June 22, '
'2026',
'data_breach': {'data_exfiltration': 'Threatened to release stolen data',
'personally_identifiable_information': 'Names, Social '
'Security numbers, '
'addresses, email '
'addresses, dates of '
'birth, contact '
'details, driver’s '
'license information',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Personal Identifiable '
'Information (PII)'},
'date_detected': '2026-05-12',
'date_publicly_disclosed': '2026-05-17',
'description': 'Boyd Bros Transportation LLC and WTI Transport detected '
'unauthorized access to their computer systems, confirmed as a '
'ransomware attack by the hacking group CHAOS. The breach '
'exposed sensitive personal information of employees, drivers, '
'and others, leading to potential legal action.',
'impact': {'data_compromised': 'Sensitive personal information including '
'names, Social Security numbers, addresses, '
'email addresses, dates of birth, contact '
'details, and driver’s license information',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential legal action for damages'},
'investigation_status': 'Ongoing',
'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'CHAOS'},
'references': [{'source': 'Dark web forum'}],
'regulatory_compliance': {'legal_actions': 'Potential legal action by Shamis '
'& Gentile P.A.'},
'response': {'communication_strategy': 'Notified affected individuals by mail '
'on June 22, 2026',
'containment_measures': 'Blocked further unauthorized activity'},
'threat_actor': 'CHAOS',
'title': 'Boyd Bros Transportation & WTI Transport Hit by Ransomware Attack, '
'Exposing Sensitive Data',
'type': 'ransomware'}