Bert Kondruss, KonBriefing Research, Germany
3 January 2022
Our timeline shows known attacks on companies in the FMCG industry in 2021
Cyberattacks on Fast Moving Consumer Goods (FMCG) companies in 2021. - Usable under the license CC BY 4.0. Credits: KonBriefing.com/Bert Kondruss.
What is the FMCG market?
FMCG stands for "Fast Moving Consumer Goods". These are everyday goods that are purchased frequently, for example food and cleaning products. Our timeline includes companies along the entire value chain, i.e. agricultural companies, food producers, wholesalers and retailers.
Type of cyber attacks
Not all companies have named the exact nature of the attack. In most cases, however, it is likely to have been ransomware, in which criminals penetrate the corporate network, extract the data and then encrypt it on the corporate computers, after which they demand money from the companies to decrypt the data. If the money is not paid, the criminals publish the data on the Internet or auction it off.
Individual attacks
The following attacks had a high attention value:
- May 2021: Attack on the world's largest meat producer JBS. As a result, numerous production facilities failed. The company paid a ransom of several million dollars.
- July 2021: The extensive attack on Kaseya VSA affected Visma, a company that operates retail checkouts. At Coop in Sweden, several hundred stores had to remain closed as a result.
- November 2021: Cyberattack on MediaMarktSaturn, as a result of which, among other things, the checkouts could no longer be used.
- December 2021: With Deutsche See and Royal Greenland, two fish companies were affected within a few days.
Unreported figures
The timeline shows hacker attacks that have become public knowledge. The number of unreported cases is likely to be low for large companies with contact to end customers. It is likely to be higher for companies at the beginning and in the middle of the value chain, for small companies, and for companies in countries with less common languages or less reporting.
Details and sources
February 2021
Ransomware at food wholesaler
JFC International (Europe) - Düsseldorf, North Rhine-Westphalia, Germany
https://www.jfc.eu/assets/2021/02/JFC_20...
February 2021
Data theft at US grocery chain
Kroger - Cincinnati, Ohio, USA (Hamilton County)
Through a vulnerability in file transfer software.
https://www.kroger.com/i/accellion-incid...
March 2021
Cyber attack on a major brewery in the USA
Molson Coors - Chicago, Illinois, USA (Cook County, DuPage County)
https://www.bleepingcomputer.com/news/se...
April 2021
Cyber attack on grocer in Austria
Türnitz, Lower Austria, Austria
https://www.noen.at/lilienfeld/tuernitz-...
April 2021
Cyber attack on retail chain in Germany
Tegut - Fulda, Hessen, Germany (Landkreis Fulda)
https://www.heise.de/news/Tegut-IT-Netz-...
https://www.heise.de/news/Nach-Hackerang...
April 2021
Cyber attack on Dutch food logistics company
Bakker Logistiek - Zeewolde, Flevoland, Netherlands
https://threatpost.com/ransomware-cheese...
May 2021
Hacker attack on dairy in Germany
Ehrmann - Oberschönegg, Bavaria, Germany (Landkreis Unterallgäu)
https://moproweb.de/news/home/hackerangr...
May 2021
Cyber attack on world's largest meat producer
JBS - São Paulo, Brazil
The company paid a ransom of 11 million dollar.
https://www.heise.de/news/Fleischkonzern...
May 2021
Customer data stolen from Dutch pizza chain
New York Pizza - Netherlands
https://www.newyorkpizza.nl/datalek
May 2021
Attack on electronics retailer in Singapore
Audio House - Singapore
https://www.straitstimes.com/tech/tech-n...
June 2021
Cyber attack on fast food chain in USA, South Korea and Taiwan
McDonald's - Oak Brook, Illinois, USA (DuPage County, Cook County)
https://www.heise.de/news/McDonald-s-Hac...
June 2021
Danish branch of a large DIY chain hit by hacker attack
Bauhaus Denmark - Tilst, Denmark
https://www.bauhaus.dk/bauhaus-holder-ab...
https://www.version2.dk/artikel/bauhaus-...
June 2021
Hacker attack on dairy in Austria
Salzburgmilch - Salzburg, Austria
https://www.agrarheute.com/management/ag...
https://www.derstandard.de/story/2000127...
https://www.milch.com/de/presse/presseau...
June 23, 2021
Cyber attack on a supplier of organic products in the UK
Daylesford Organic Ltd - London, United Kingdom
https://www.dailymail.co.uk/news/article...
July 2021
Kaseya VSA: Swedish supermarket chain forced to close stores after cyber attack
Coop - Sweden
As a result of the attack on the remote support software VSA, a Swedish supermarket chain had to close about 500 stores because the cash registers stopped working.
https://www.heise.de/news/Hunderte-Coop-...
https://www.coop.se/Globala-sidor/stangd...
July 2021
Hacker attack on Italian food chain
Eataly S.p.A. - Monticello d’Alba, Piemonte, Italy
https://sicurezza.net/cyber-security/att...
August 19, 2021
Cyber attack on Brazilian retail chain
Lojas Renner SA - Porto Alegre, Rio Grande do Sul, Brazil
Lojas Renner SA is headquartered in Porto Alegre and employs approximately 22,000 people. There were disruptions to operations, no ransom was paid.
https://api.mziq.com/mzfilemanager/v2/d/...
07 September 2021
Cyber attack on French liquor manufacturer
Bardinet S. A. - Blanquefort, Nouvelle-Aquitaine, France
https://www.sudouest.fr/gironde/bordeaux...
October 9, 2021
Ransomware at major candy manufacturer in the U.S.
Ferrara Candy - Chicago, Illinois, USA (Cook County, DuPage County)
https://www.zdnet.com/article/illinois-c...
October 22, 2021
Ransomware attack on Italian snack manufacturer
San Carlo - Milano, Italy
https://www.cybersecurity360.it/nuove-mi...
October 23, 2021
Website and app of a major UK grocery store chain down after cyberattack
Tesco plc - Welwyn Garden City, England, UK
https://www.bbc.com/news/business-590274...
October 23, 2021
Ransomware at dairy company in Wisconsin
Schreiber Foods Inc. - Green Bay, Wisconsin, USA (Brown County)
https://eu.wisfarmer.com/story/news/2021...
3 November 2021
Cyber attack on French agricultural group
Avril SCA - Puteaux, Île-de-France, France
https://www.lemagit.fr/actualites/252509...
8 November 2021
Ransomware at German electronics store chain
MediaMarktSaturn - Ingolstadt, Bavaria, Germany
https://www.heise.de/news/Ransomware-Ang...
11 November 2021
Cyberattack on a brewery in Barcelona, Spain
S.A. Damm - Barcelona, Catalonia, Spain
https://www.reuters.com/world/europe/cyb...
14 November 2021
Cyber attack on warehouse club in the Philippines
S&R Membership Shopping - Parañaque, Metro Manila / Kalakhang Maynila, Philippines
https://cnnphilippines.com/business/2021...
December 2021
Cyber attack on a food wholesaler in western Switzerland
Fribourg, Canton of Fribourg, Switzerland
https://www.rtn.ch/rtn/Actualite/Region/...
December 2021
Cyber attack on fish company in Germany
Deutsche See GmbH - Bremerhaven, Bremen, Germany
https://www.butenunbinnen.de/nachrichten...
5 December 2021
Cyber attack on the supermarket chain Spar in England
Spar / James Hall & Company - United Kingdom
https://www.theguardian.com/technology/2...
19 December 2021
Cyber attack on fishing company in Greenland
Royal Greenland A/S - Nuuk, Grönland
https://knr.gl/da/nyheder/omfattende-cyb...
About KonBriefing.com
KonBriefing.com is an independent researcher and analyst in the field of IT security, information security, risk management and compliance. The company was founded in 2019 and is based in Germany.
About the author
Bert Kondruss
Cyber security analyst
Founder and Managing Director of KonBriefing.com
Do you have questions? Send me an email
Contact
Cyber security analyst
Founder and Managing Director of KonBriefing.com
Do you have questions? Send me an email
Contact
Cyber attacks worldwide
(Click the image to open)
Related
KonBriefing Research UG (haftungsbeschränkt), Bahnhofstrasse 13, D-71696 Moeglingen, Germany