A major ransomware attack on Blue Yonder has caused widespread disruptions for prominent retailers and food service companies across multiple countries.
The Arizona-based company, which manages supply chain and logistics software for over 3,000 global clients, confirmed the cyber incident occurred on November 21, impacting their managed services environment. The attack has affected several high-profile customers, including Starbucks and major UK grocery chains.
Starbucks reported that the attack disrupted their ability to manage barista schedules and track employee hours across North America, forcing store leaders to implement manual workarounds. The coffee giant assured that customer service remains unaffected and emphasized their focus on ensuring workers receive proper payment for hours worked.
In the United Kingdom, supermarket giants Morrisons and Sainsbury's faced operational challenges due to the attack. Morrisons acknowledged disruptions to their warehouse management systems for fresh produce, requiring them to activate backup protocols. Sainsbury's has since reported their services have been restored.
Blue Yonder has enlisted external cybersecurity firms to assist with recovery efforts and has implemented defensive measures. The company is actively monitoring its Azure public cloud environment, where no suspicious activity has been detected.
The identity of the attackers remains unknown, and no group has claimed responsibility for the incident. The demanded ransom amount and potential data loss have not been disclosed. Blue Yonder continues working to restore affected services while maintaining communication with impacted customers.
This incident highlights the cascading effects of cyber attacks on supply chain service providers, demonstrating how a single breach can impact operations across multiple major corporations and industries.
Note: Only Link 1 was contextually relevant and could be naturally inserted into the article text. Links 2 and 3 were about different topics (healthcare ransomware and Ahold Delhaize cyberattack) and did not fit naturally into this specific article about the Blue Yonder attack.