More than 2,000 WineLab liquor stores across Russia have remained shut for three days following a ransomware attack on their parent company, one of Russia’s largest alcohol producers. Novabev Group is a major Russian producer and distributor of spirits, including the Beluga and Belenkaya vodka brands. “The company maintains a principled position of rejecting any interaction with cybercriminals and refuses to fulfill their demands,” Novabev Group said in a statement on Wednesday. The cyberattack has halted product shipments from Novabev for at least two days, according to local retailers quoted by Russian media outlet Vedomosti. Cybersecurity experts interviewed by Forbes said they could not recall a comparable case in which a major Russian retail chain was forced to shut down entirely due to a cyberattack. The attack crippled parts of the Novabev Group’s infrastructure, affecting WineLab’s point-of-sale systems and online services. Customers also reported being unable to pick up orders from retail locations or parcel lockers, with customer service offering to extend storage periods for online purchases. Novabev said its internal IT team is working “around the clock” with external specialists to restore operations and strengthen defenses against future threats. No ransomware group has claimed responsibility for the incident, and Novabev has not publicly attributed the attack. Forbes Russia estimated that each day of downtime could cost WineLab 200 million to 300 million rubles ($2.6 million to $3.8 million) in lost revenue. Novabev Group's signature brands include Beluga Vodka. There is no indication so far that customer data has been compromised, though an investigation is ongoing, the company added. She writes about cybersecurity startups, cyberattacks in Eastern Europe and the state of the cyberwar between Ukraine and Russia.
This Cyber News was published on therecord.media. Publication date: Thu, 17 Jul 2025 18:30:29 +0000