Theft of Agricultural Spray-Capable Drones and Implications for CBRN Risk and Public-Safety Response
One significant, publicly corroborated U.S. theft cluster was identified within the recent review period. On March 24, 2026, 15 spray-capable drones and associated spray systems were reportedly stolen from CAC International in Harrison. The equipment was later recovered on April 27 in Dover by the New Jersey State Police, with assistance from Homeland Security Investigations. Public sources identify the fleet as 15 Ceres Air C31 agricultural drones and spray systems. The equipment is valued at over $750,000 (Sabes, 2026). The perpetrator remained publicly unidentified at the time of reporting.
National concern does not originate from any chemical, biological, radiological, or nuclear (CBRN) attack, as no such incidents have been publicly reported. (CBRN refers to attacks involving hazardous chemicals, disease agents, radioactive materials, or nuclear devices.) Instead, apprehension focuses on the potential misuse of agricultural spray drones. This concern is driven by their legitimate aerial-dispensing capabilities (their designed function to release substances from the air), modular payload architecture (the ability to swap out and customize parts the drone carries), increasing commercial availability, and imperfect supply-chain controls (weaknesses in tracking and managing who receives the drones and their parts). According to Federal Aviation Administration (FAA) regulations, dispensing chemicals or agricultural products by drone constitutes a regulated aerial-application activity. U.S. Environmental Protection Agency (EPA) rules require label-compliant application methods for lawful pesticide use (that is, following directions found on the chemical's label). Collectively, these factors render spray drones both valuable agricultural tools and attractive targets for diversion if stolen.
The most plausible near-term public-safety hazard is opportunistic chemical misuse, contamination hoaxes, coercive public disruption, or criminal experimentation utilizing existing dispensing platforms (drones intended to distribute substances), rather than a sophisticated weapon of mass destruction (WMD) attack. Biological and radiological misuse are considered low-probability but high-consequence scenarios. Consequently, resources such as the Federal Bureau of Investigation (FBI) Weapons of Mass Destruction Directorate, the Cybersecurity and Infrastructure Security Agency's (CISA) uncrewed aircraft system (UAS) resources, hazmat (hazardous materials) evidence-preservation protocols, and interoperable exercises involving fire, emergency medical services (EMS), law enforcement, and public health remain pertinent.
Immediate operational priorities for public safety include treating suspicious spray-capable drone incidents as integrated aviation-security and hazardous materials events. Inventory and transfer controls should be strengthened, with improved tracking of serial numbers, registration, and Remote ID. Evidence must be preserved without causing secondary contamination. Public messaging should avoid sensationalism to prevent amplifying fear beyond factual circumstances.
While theft cases like the March–April 2026 New Jersey incident remain sparse, the risk posed by agricultural spray drones is elevated by their inherent design for liquid or granular dispersal, rapid adoption, and evolving regulatory context. The recommended operational response should focus on clear, disciplined interagency coordination, rigorous inventory controls, and factual, non-sensational public messaging—reinforcing prevention, rapid notification, and evidence preservation.
Incident Overview
Among authoritative public sources reviewed, only one recent U.S. incident cluster met the evidentiary threshold for inclusion: the theft and recovery of 15 spray-capable agricultural drones in New Jersey. Reporting on additional recent U.S. spray-drone thefts was sparse, duplicative, or insufficiently corroborated. This scarcity is itself notable. Public-safety leaders are advised to consider the open-source record as incomplete and to avoid equating a limited number of public cases with low systemic exposure (Nguyen et al., 2020).
On March 24, 2026, 15 agricultural drones and spray systems were taken from CAC International in Harrison using false shipping paperwork, according to public reporting. Multiple reports identify the units as Ceres Air C31 drones. The full shipping documentation, chain-of-custody trail, controller and battery status, and whether any aircraft were activated remain unspecified in public reporting.
On April 24–27, 2026, security concerns escalated publicly. Media reporting tied the theft to FBI concern because the aircraft were agricultural spray platforms. Local television reporting and RFD described the drones as registered crop-duster systems. Much of the reporting relies on law-enforcement statements relayed through the media. There is no full public case filing yet.
On April 27, 2026, the New Jersey State Police Cargo Theft Unit, with assistance from HSI and CBP, recovered 15 stolen agricultural drones and spray systems from Prudent Corporation in Dover. Public sources did not clarify why the equipment remained at the warehouse for over a month or whether an attempted diversion occurred before recovery.
According to Fox News, fifteen Ceres Air C31 industrial spray drones were stolen from a logistics company in New Jersey on March 24. An expert warned the theft could become a "nightmare scenario." A report by the National Institute of Standards and Technology notes that technical security claims about drones have not been independently detailed in public. Such claims should not replace thorough public safety planning.
The timeline below summarizes the theft cluster and the broader policy context that increases its significance. This includes the December 2025 FCC covered-list action affecting foreign-made drones and components.
From a first-responder perspective, the case matters less because it is unique and more because it demonstrates how a lawful agricultural platform can become a homeland-security problem through ordinary fraud, logistics deception, and delayed detection. The theft vector appears to have been a failure in paperwork and transfer controls. It was not a sophisticated cyber or aviation exploit. This lesson is broadly relevant to warehouses, dealerships, distributors, and agricultural service firms nationwide. (Stolen agricultural drones recovered at New Jersey warehouse, 2026)
Technical Context and CBRN Risk Analysis
Spray-capable agricultural drones are not improvised devices; they are commercial aerial application systems (drones designed to spray liquid or granular substances in agriculture) designed to dispense liquids or granules in a regulated environment. (Liu & Ampatzidis, 2025) FAA (Federal Aviation Administration) guidance states that 14 CFR Part 137 (the part of the Code of Federal Regulations governing aerial application of substances) governs the use of aircraft, including drones, for dispensing or spraying substances. EPA (Environmental Protection Agency) guidance emphasizes that the pesticide label is central to lawful handling and use, and that drone use is not recommended unless the product label authorizes that application method. Purdue and Ohio State extension materials note that spray drones are being used or are under consideration for forestry, mosquito control, roadside spraying, invasive weed control, and crop protection. These platforms already bridge agriculture and public-health-adjacent use cases (activities related to or impacting public health).
Commercial capabilities are now substantial even without sensitive operational details. Official manufacturer materials show a mainstream large agricultural platform from DJI (a major drone manufacturer) that can carry 40 kg (about 88 pounds) for spraying. The company’s newer T100 platform advertises a maximum payload of 100 kg (about 220 pounds). Ceres Air’s January 2026 materials describe the C31 as a heavy-lift, multi-mission platform with nearly 400 pounds of lift and a 40-gallon (about 151 liters) tank in field-test marketing. (DJI AGRAS T40 - One for All, 2023) The threat is not that an offender must invent a dispersal system from scratch. Rather, a thief may be attempting to divert a legitimate, already-integrated liquid- or granular-handling system.
Traceability and built-in controls help, but do not eliminate risk. FAA Remote ID rules require drones in flight to broadcast identification and location information. FAA registration rules require covered drones to be labeled and operators to show proof of registration to law enforcement upon request. In January 2025, DJI announced that most of its U.S. consumer and enterprise geofencing shifted from hard restrictions to warnings aligned with FAA geo-awareness and Remote ID. However, public reporting does not specify how secure the activation and remote-lock controls were during the theft or whether they reduced any risks before recovery.
The broader environment is also changing fast. According to DJI Agriculture's annual report, around 400,000 DJI agricultural drones were in use globally at the end of 2024, marking a 90 percent increase since 2020. (Agriculture, 2025) The FCC (Federal Communications Commission) issued a covered-list action (a regulatory measure limiting use of foreign-made technology) in December 2025, citing unauthorized surveillance, sensitive-data exfiltration (unauthorized transfer of data), supply-chain vulnerabilities, and related threats. That combination—rapid growth, modular platforms, and supply-chain stress—means public safety should expect more platforms in circulation, more mixed-origin fleets, and more uneven security controls across owners and manufacturers.
Recent think-tank and threat-analysis work reinforces that context. A 2026 analysis from the Brookings Institution describes criminal organizations using drones for reconnaissance, contraband movement, and increasingly violent missions, while the 2026 DroneSec threat summary notes the transfer of drone tactics from conflict zones into organized crime and smuggling activity. Foundational U.S. Army/AUSA work has, since 2020, treated commercial UAS as plausible chemical and biological delivery platforms and argued for stronger counter-UAS strategy, PPE readiness, and exercise integration. (Felbab-Brown, 2026) Those sources do not prove an imminent domestic attack with stolen agricultural drones, but they do support treating theft of spray-capable systems as a homeland-security warning indicator rather than a routine property crime. (DHS, 2024)
Operational Implications for Public Safety
For responders, a suspicious spray-capable drone event should be treated as a combined aviation, hazmat, and law-enforcement problem from the outset. FAA law-enforcement guidance instructs responders to locate and identify operators where possible, document the device and its activity, collect evidentiary details, and report the incident to the FAA Regional Operations Center and FAA Law Enforcement Assistance Program contacts. FAA public guidance also says dangerous or criminal drone use should be reported immediately to local law enforcement or first responders. In practice, that means dispatch, patrol, fire, hazmat, EMS, emergency management, and aviation liaisons should all recognize that a “drone call” may need up-tiering if a tank, boom, nozzles, external load, or dispensing residue is present or reported.
Scene safety should default to hazardous-materials discipline rather than curiosity-driven evidence collection. The Occupational Safety and Health Administration HAZWOPER standard requires incident command, a designated safety official, limiting personnel in hazardous areas, and buddy-system operations in dangerous zones. CHEMM, HHS’s chemical emergency platform for responders, organizes initial response around expected emergency type, scale, probable quantity released, victim counts, and personal-protection checklists. The operational implication is simple: if responders do not know what was, or might have been, in the aircraft or attached equipment, they should act as if contamination and secondary exposure are possible until competent hazmat assessment narrows the hazard picture.
Evidence preservation needs to happen without turning the scene into a secondary-contamination event. FBI guidance on suspicious powders emphasizes the value of immediate multi-agency coordination, safety-focused threat assessment, proper evidence handling, and investigative planning. NIST/OSAC guidance underscores the chain of custody, contamination prevention, and integrity of collected evidence. NFPA's mission-specific evidence-preservation doctrine for hazardous materials/WMD incidents requires that investigative agencies and any authority with hazardous-device responsibility be notified, approved PPE be used, evidence be identified and preserved, public-safety samples be packaged and decontaminated externally, and all actions be documented. In a suspected spray-drone incident, that framework matters as much for batteries, controllers, loading residues, hoses, packaging, and transfer paperwork as it does for the drone airframe itself.
Interagency notification is a major readiness gap. FBI WMDD states that it addresses the WMD incident spectrum from prevention through response, and the Bureau’s 2025 outreach article emphasizes that WMD coordinators in field offices build relationships and train with local responders to keep communities “left-of-boom.” CISA’s chemical-threat page identifies both theft or diversion of chemicals and unauthorized drone activity as real threat categories for critical infrastructure, while its 2025 UAS guidance package for infrastructure and public safety shows that the federal system increasingly expects drone incidents to be managed as cross-sector rather than single-discipline events. Public-safety agencies should therefore pre-build notification matrices that include local law enforcement, the FBI field office/WMD coordinator, FAA ROC/LEAP, state fusion center, public health, agriculture/pesticide regulators, and critical infrastructure owners, as indicated.
Public messaging is not a side issue; it is part of consequence management. Even a false or low-concentration release can trigger fear, hospital self-referrals, school closures, and social-media rumor cascades. Agencies should avoid guessing the agent, avoid releasing speculative technical commentary, and avoid publishing exploitable details about platform capabilities, vulnerabilities, or scene findings before they are operationally necessary and cleared for release. The goal is calm, credible messaging: what is known, what is not yet known, what agencies are doing, and what the public actually needs to do next.
Policy Recommendations and Communication Products
The sources most worth citing first in a professional article or briefing are, in order: FAA Part 137/Remote ID/public-safety materials; EPA labeling and UAV application guidance; FBI WMDD/WMD-coordinator outreach; CISA chemical and UAS critical-infrastructure guidance; the NJSP/HSI-reported New Jersey theft-and-recovery cluster as relayed through major/local news; FCC’s December 2025 covered-list action; and manufacturer materials from Ceres Air and DJI for capability context. That order keeps the analysis anchored in regulation, responder doctrine, and confirmed incident facts before it moves to vendor claims or interpretive commentary.
Tighten transfer-point verification.
The New Jersey case appears to have exploited a paperwork and handoff process rather than an exotic technical vulnerability. Shipment release procedures for high-capability spray drones should require callback verification with known contacts, multi-factor confirmation of delivery instructions, and explicit exception handling for changes in carrier, pickup time, or destination.
Maintain detailed asset identity records.
Owners and distributors should preserve photographs, serial numbers, registration records, Remote ID information, controller identifiers, battery identifiers, and purchaser-of-record details in a format immediately shareable with investigators. FAA registration and Remote ID rules already create a traceability backbone; agencies should operationalize it before a loss, not after one.
Separate the system components.
Airframes, controllers, batteries, chemical products, chargers, and credentials should not be stored or shipped as a single easy-to-divert package. This logic is reflected in older agricultural aviation security practices and is consistent with Ceres Air’s post-recovery public statement on separated battery logistics and secure activation.
Do not rely on geofencing as a primary security control.
DJI’s U.S. geofencing shift toward warnings rather than hard prevention shows why vendor-side software should be treated as a supplementary aid, not as a control capable of preventing theft, malicious diversion, or deliberate noncompliance. Procurement and risk assessments should explicitly ask whether security claims are enforceable, auditable, and independent of operator intent.
Institutionalize a drone–hazmat–law playbook.
Every region should have a short notification and scene-management annex for suspicious spray-capable drones covering dispatch triggers, air/ground safety, FAA reporting, FBI notification, evidence preservation, and public messaging. The best starting points are the FAA’s Public Safety Toolkit, the FBI WMD coordinator relationships, the CISA public-safety UAS guidance, and existing hazmat evidence-preservation SOPs.
Address supply-chain resilience as a security issue.
FCC action against foreign UAS and components was framed as a national security response to surveillance, exfiltration, and supply chain risks. For public safety and agriculture alike, the practical issue is continuity: fleets with uneven access to parts, batteries, and vendor support can become harder to secure, standardize, and track. Security planning should therefore include procurement diversification, validated domestic-service pathways, and lifecycle replacement plans.
Exercise the hybrid scenario, not just the drone sighting.
Training should combine suspicious UAS reporting with hazmat scene control, ICS discipline, evidence handling, joint information system messaging, and healthcare/public-health consultation. The point is not to make every drone call a WMD event; it is to prevent a real hybrid event from being mishandled as either “just a drone” or “just a hazmat call.”
References
Associated Press. (2025, December 23). FCC bans new Chinese-made drones, citing security risks. AP News.
Burnette-Irwin, N. (2026, April 30). Ag drones stolen in New Jersey recovered. RFD.
Brookings Institution. (2026, February 18). How Mexican cartels are using drones, now and in the future.
Ceres Air. (2026, January 30). The 400 lb benchmark: How the C31 is scaling heavy-lift operations.
Cybersecurity and Infrastructure Security Agency. (n.d.). Chemical threat and risk.
Cybersecurity and Infrastructure Security Agency. (2025). Uncrewed aircraft system resource guide for public safety and life support.
Cybersecurity and Infrastructure Security Agency. (2025, November 19). CISA releases new guides to safeguard critical infrastructure from unmanned aircraft systems threats.
DJI. (2025, January 13). DJI updates GEO system in U.S. consumer & enterprise drones.
DJI. (n.d.). DJI AGRAS T50.
DJI. (2025, April 30). DJI Agriculture’s annual report reveals drone-powered agriculture on a global scale.
Federal Aviation Administration. (2024, March 18). How to register your drone. U.S. Department of Transportation.
Federal Aviation Administration. (2025, March 19). Remote identification of drones. U.S. Department of Transportation.
Federal Aviation Administration. (2025, May 23). Dispensing chemicals and agricultural products (Part 137) with UAS. U.S. Department of Transportation.
Federal Aviation Administration. (2026, April 10). Understanding your authority: Handling sightings and reports. U.S. Department of Transportation.
Federal Aviation Administration. (2026, April 16). FAA launches new program to accelerate enforcement of drone violations. U.S. Department of Transportation.
Federal Aviation Administration. (2026, March 23). Public Safety Toolkit. U.S. Department of Transportation.
Federal Bureau of Investigation. (n.d.). Weapons of mass destruction.
Federal Bureau of Investigation. (2025, January 29). Keeping America left-of-boom safe.
Federal Bureau of Investigation. (2004, April 20). Suspicious powders 101.
Federal Communications Commission. (2025, December 22). National security determination to add certain UAS and UAS critical components to the Covered List.
Lambert, C. A. (2020). The chemical and biological attack threat of commercial unmanned aircraft systems. Association of the U.S. Army.
Michigan State University. (2025, November 25). Agricultural drones are reshaping farming.
National Agricultural Aviation Association. (n.d.). Ag aviation security.
National Institute of Standards and Technology, Organization of Scientific Area Committees. (2021). Standard for on-scene collection and preservation of physical evidence (draft).
Occupational Safety and Health Administration. (n.d.). 1910.120—Hazardous waste operations and emergency response. U.S. Department of Labor.
Ohio State University Extension. (n.d.). Drones for spraying pesticides—Opportunities and challenges.
Purdue Extension. (2025). Using spray drones in Indiana: Certification requirements.
U.S. Department of Health and Human Services. (n.d.). Chemical Hazards Emergency Medical Management.
U.S. Department of Health and Human Services. (n.d.). Information for the first responders. CHEMM.
U.S. Environmental Protection Agency. (2025, August 28). Can I use fogging, fumigation, electrostatic spraying, or drones to help control COVID-19?
U.S. Environmental Protection Agency. (2026, April 9). Labeling requirements.
U.S. Environmental Protection Agency. (2019, May 8). Pesticide application by unmanned aerial vehicles (UAVs).
WABC. (2026, April 27). 15 stolen agricultural drones recovered at NJ warehouse.
