Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Meat Producer Ransomware Attack Disrupts Global Production

A ransomware attack on the world’s largest meat company is disrupting production around the world just weeks after a similar incident shut down a U.S. oil pipeline.

A ransomware attack on the world’s largest meat company is disrupting production around the world just weeks after a similar incident shut down a U.S. oil pipeline.

The Brazilian meat processor JBS SA notified the U.S. of a ransom demand from a criminal organization likely based in Russia, White House principal deputy press secretary Karine Jean-Pierre confirmed Tuesday. She said the White House and the Department of Agriculture have been in touch with the company several times this week.

[UpdateMeat Producer JBS Expects Most Plants Working Wednesday ]

JBS has extensive facilities in the U.S., including processing plants in Texas and Colorado. Two shifts were canceled Tuesday at JBS’ meatpacking plant in Greeley, Colorado, according to UFCW Local 7, which represents 3,000 workers at the plant.

The local union also has reports from workers that production was down on Monday but that is unconfirmed, according to spokesman Dakar Lanzino. Union representatives were meeting Monday to try to get more information from the company, Lanzino said.

Also ReadCybersecurity Threats to the Food Supply Chain ]

JBS has not stated publicly that the attack was ransomware.

Jean-Pierre said the White House “is engaging directly with the Russian government on this matter and delivering the message that responsible states do not harbor ransomware criminals.” The FBI is investigating the incident, and the Cybersecurity and Infrastructure Security Agency is offering technical support to JBS.

Advertisement. Scroll to continue reading.

In addition, USDA has spoken to several major meat processors in the U.S. to alert them to the situation, and the White House is assessing any potential impact on the nation’s meat supply.

In a statement Sunday, JBS said the cyberattack affected servers supporting its operations in North America and Australia. The company said it notified authorities and engaged third-party experts to resolve the problem as soon as possible. Backup servers weren’t affected.

Thousands of Australian meat plant workers had no work for a second day Tuesday, and a government minister said it might be days before production resumes. JBS is Australia’s largest meat and food processing company, with 47 facilities across the country including abattoirs, feedlots and meat processing sites. JBS employs around 11,000 people in Australia.

It’s not the first time a ransomware attack has targeted a food company. Last November, Milan-based Campari Group said it was the victim of a ransomware attack that caused a temporary technology outage and compromised some business and personal data.

In March, Molson Coors announced a cyber attack that affected its production and shipping.

Last month, a gang of hackers shut down operation of the Colonial Pipeline, the largest U.S. fuel pipeline. Colonial Pipeline confirmed it paid $4.4 million to the hackers.

Related: Ransomware Disrupts Production at Australian Beverage Company Lion

Related: Packaging Giant WestRock Says Ransomware Attack Hit Production

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Register

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Register

People on the Move

After the passing of Amit Yoran, Tenable has appointed Steve Vintz and Mark Thurmond as co-CEOs.

Former Wiz executive Trish Cagliostro has joined Orchid Security as Chief Revenue Officer.

Transcend has named former UnitedHealth Group CISO Aimee Cardwell as CISO in Residence.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.