A ransomware attack on a U.S. based software company is causing havoc before Thanksgiving at major grocery stores and retailers in the United States and United Kingdom.
Blue Yonder, an Arizona-based firm that was acquired by Panasonic three years ago, said its team is working “around the clock” to respond to the incident first reported last week.
The hackers have made it difficult for companies to handle payroll, scheduling and other cloud computing services, according to multiple reports.
Some companies that may have been affected include Starbucks, Ford, Target and Kroger.
Sources told CNN that Blue Yonder has hired CrowdStrike, a U.S. cybersecurity company, to recover from the hack.
Ransomware attacks hit hospitals, schools and government agencies in 2023 collecting more than $1 billion in cryptocurrency payments from victims, according to a report by Chainalysis.
In ransomware attacks, computer systems are generally locked until an extortion fee is paid to hackers.
It is common for attacks to occur during holiday seasons or weekends when defenses are the weakest, according to cybersecurity firm Semperis. A study found that 86 percent of attacks were targeted on a weekend or holiday when there are less employees on the clock, and the organizations that were attacked said their security staff was reduced by as much as 50 percent during these times.
“When attackers get inside a company’s systems, especially if it’s on a holiday weekend when staff is diminished, they may not be noticed right away,” said Guido Grillenmeier, a principal technologist with Semperis, in the report. “Companies are less careful and more vulnerable during those periods, and attackers know that.”
Blue Yonder has acknowledged the “disruptions” to its services.
On Saturday, the company said in a statement that it was making “steady progress.” However, no timetable for restoration has been offered.
Related stories
- Ransomware group claims it has infiltrated Waynesboro city government, police data
- Waynesboro ransomware attack isn’t the only security issue the city has faced
- Study: U.S. companies are most affected by ransomware attacks
- Ransomware perpetrator extradited from Poland to face charges in Virginia, New Jersey
- Warner responds to ransomware group’s cyberattack on Change Healthcare
- Staunton Public Schools at ‘heightened level’ as ransomware attacks target educational sector