CyberSecurityBoard
Sponsor Register Login

Whole Foods supplier UNFI restores core systems after cyberattack

The incident was disclosed following widespread reports on social media that the company's systems had been down, and employees were having their shifts canceled. American grocery wholesale giant United Natural Foods (UNFI) reports that it has restored its core systems and brought online the electronic ordering and invoicing systems affected by a cyberattack. UNFI disclosed earlier this month that a June 5 cyberattack impacted customer orders and caused temporary disruptions to business operations after it forced it to take some systems offline. In a separate 8-K filing with the U.S. Securities and Exchange Commission, the grocery distributor said it believes the incident is also "reasonably likely" to have a material impact on its net income/(loss) and adjusted EBITDA for the year's fourth fiscal quarter of 2025. The Company has also incurred, and expects to continue to incur, direct expenses related to the investigation and remediation of the incident," UNFI said. Since the breach was discovered, UNFI has also hired external cybersecurity experts to investigate the incident and notified relevant law enforcement authorities. More recently, the Scattered Spider threat actors and the DragonForce ransomware operation have targeted UK retailers, such as Harrods, Co-op, and Marks & Spencer, and are now shifting their focus to U.S. retailers and insurance companies. "In the weeks following the incident, the Company experienced reduced sales volume and increased operational costs as the Company worked to drive solutions-oriented results for its customers. UNFI has not yet disclosed the nature of the attack or whether any ransomware group has claimed responsibility for the breach. UNFI is the latest food industry company to face a data breach. With over 28,000 employees, more than 11,000 suppliers, and 53 distribution centers, it delivers fresh and frozen products to over 30,000 locations in the U.S. and Canada, including supermarket chains, e-commerce providers, and independent retailers. JBS Foods, the world's largest beef producer, also paid an $11 million ransom in 2021 after REvil ransomware shut down production at multiple sites worldwide. In March, Sam's Club, owned by Walmart, announced it was investigating a ransomware breach linked to the Clop ransomware gang.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Fri, 27 Jun 2025 06:25:14 +0000


Cyber News related to Whole Foods supplier UNFI restores core systems after cyberattack

Whole Foods supplier UNFI restores core systems after cyberattack - The incident was disclosed following widespread reports on social media that the company's systems had been down, and employees were having their shifts canceled. American grocery wholesale giant United Natural Foods (UNFI) reports that it has ...
4 months ago Bleepingcomputer.com Dragonforce Scattered Spider
United Natural Foods says week-long cyber incident will impact quarterly income | The Record from Recorded Future News - United Natural Foods (UNFI) provided an update to regulators at the Securities and Exchange Commission on Thursday afternoon, writing that the June 5 cyberattack forced the company to take systems offline that manage fulfillment and distribution of ...
4 months ago Therecord.media
Understanding Each Link of the Cyberattack Impact Chain - It's often difficult to fully appreciate the impact of a successful cyberattack. Other consequences aren't so obvious - from a loss of customer trust and potential business to stolen data that may surface as part of another cyberattack years later. ...
1 year ago Securityboulevard.com
Ace Hardware says 1,202 devices were hit during cyberattack - Ace Hardware confirmed that a cyberattack is preventing local stores and customers from placing orders as the company works to restore 196 servers. Ace Hardware is a hardware store retailer-owned cooperative that operates 17 distribution centers and ...
1 year ago Bleepingcomputer.com LockBit
Mortgage giant Mr. Cooper hit by cyberattack impacting IT systems - U.S. mortgage lending giant Mr. Cooper was breached in a cyberattack that caused the company to shut down IT systems, including access to their online payment portal. Mr. Cooper is a mortgage lending company based out of Dallas, Texas, that employs ...
1 year ago Bleepingcomputer.com
CVE-2023-52784 - In the Linux kernel, the following vulnerability has been resolved: bonding: stop the device in bond_setup_by_slave() Commit 9eed321cde22 ("net: lapbether: only support ethernet devices") has been able to keep syzbot away from net/lapb, until today. ...
1 year ago Tenable.com
Long Beach, California turns off IT systems after cyberattack - The Californian City of Long Beach is warning that they suffered a cyberattack on Tuesday that has led them to shut down portions of their IT network to prevent the attack's spread. Long Beach is the home to approximately 460,000 people and is the ...
1 year ago Bleepingcomputer.com
Memorial University recovers from cyberattack, delays semester start - The Memorial University of Newfoundland continues to deal with the effects of a cyberattack that occurred in late December and postponed the start of classes in one campus. MUN is the largest public university in Atlantic Canada, with an academic and ...
1 year ago Bleepingcomputer.com Dragonforce
CVE-2023-53023 - In the Linux kernel, the following vulnerability has been resolved: ...
7 months ago
CVE-2025-12194 - Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All (API modules), Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All (API modules) allows ...
2 weeks ago
Online museum collections down after cyberattack on service provider - Museum software solutions provider Gallery Systems has disclosed that its ongoing IT outages were caused by a ransomware attack last week. Gallery Systems was formed in April 2022 when it merged with Artsystems, a global leader in gallery and ...
1 year ago Bleepingcomputer.com Akira
US mortgage lender loanDepot confirms ransomware attack - Leading U.S. mortgage lender loanDepot confirmed today that a cyber incident disclosed over the weekend was a ransomware attack that led to data encryption. LoanDepot is a major nonbank mortgage lender in the United States, with over $140 billion in ...
1 year ago Bleepingcomputer.com Akira
Tyson Foods hit by Snatch Ransomware Gang - Actor: Snatch ...
1 year ago Twitter.com Snatch
Kraft Foods hit by Snatch Ransomware Gang - Actor: Snatch ...
1 year ago Twitter.com Snatch
CVE-2011-4543 - Multiple directory traversal vulnerabilities in osCommerce 3.0.2 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) set or (2) module parameter to (a) ...
7 years ago
Cyberattack on health services provider impacts 5 Canadian hospitals - A cyberattack on shared service provider TransForm has impacted operations in five hospitals in Ontario, Canada, impacting patient care and causing appointments to be rescheduled. TransForm is a not-for-profit, shared service organization founded by ...
1 year ago Bleepingcomputer.com
American Family Insurance confirms cyberattack is behind IT outages - Insurance giant American Family Insurance has confirmed it suffered a cyberattack and shut down portions of its IT systems after customers reported website outages all week. American Family Insurance is an insurance company focusing on commercial and ...
1 year ago Bleepingcomputer.com
The Embedded Systems and The Internet of Things - The Internet of Things is a quite new concept dealing with the devices being connected to each other and communicating through the web environment. This concept is gaining its popularity amongst the embedded systems that exist - let's say - 10 or ...
1 year ago Cyberdefensemagazine.com
IT and OT cybersecurity: A holistic approach - In comparison, OT refers to the specialized systems that control physical processes and industrial operations. OT Technologies include industrial control systems, SCADA systems and programmable logic controllers that directly control physical ...
1 year ago Securityintelligence.com
Nissan is investigating cyberattack and potential data breach - Japanese car maker Nissan is investigating a cyberattack that targeted its systems in Australia and New Zealand, which may have let hackers access personal information. Details of the attack have not been published but the company informed customers ...
1 year ago Bleepingcomputer.com
CVE-2023-53109 - In the Linux kernel, the following vulnerability has been resolved: ...
6 months ago
Assessing and mitigating cybersecurity risks lurking in your supply chain - Most involve the supply of software and digital services, or at least are reliant in some way on online interactions. SMBs in particular may not proactively be looking, or have the resources, to manage security in their supply chains. Blindly ...
1 year ago Welivesecurity.com
Kwik Trip finally confirms cyberattack was behind ongoing outage - Two weeks into an ongoing IT outage, Kwik Trip finally confirmed that it's investigating a cyberattack impacting the convenience store chain's internal network since October 9. This outage has been causing widespread IT system disruptions and is ...
1 year ago Bleepingcomputer.com
CVE-2025-21652 - In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix use-after-free in ipvlan_get_iflink(). syzbot presented an use-after-free report [0] regarding ipvlan and linkwatch. ipvlan does not hold a refcnt of the lower device ...
9 months ago Tenable.com
Mortgage firm LoanCare warns 1.3 million people of data breach - Mortgage servicing company LoanCare is warning 1,316,938 borrowers across the U.S. that their sensitive information was exposed in a data breach at its parent company, Fidelity National Financial. LoanCare is a sub-servicing and interim sub-servicing ...
1 year ago Bleepingcomputer.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)