A disruption in the Blue Yonder platform prevented Starbucks from paying its baristas and managing its schedules, the company said. The Wall Street Journal. As a result, cafe managers had to manually calculate their employees’ salaries using their scheduled shifts, leaving a large margin for error because the actual hours worked may not line up.
See: 200% increase on software supply chain
Sainsbury’s and Morrisons, two of Britain’s biggest supermarket chains, were also affected, according to the trade magazine. The grocery store. Sainsbury’s said it had emergency measures in place to mitigate any disruption and had restored all operations by Monday, according to TechCrunch.
Morrisons turned to backup systems to manage its warehouses but said the attack affected the flow of goods in its stores. One of its suppliers said frozen orders were canceled on Friday because of the incident, and the supermarket estimated that availability of some convenience and wholesale products could be reduced by as much as 60 percent.
The cyber attack targeted a managed services environment run by US-based Blue Yonder, but its Azure public cloud was not affected. Blue Yonder brought in outside cybersecurity firms to deal with the incident, but so far, it has not established a timeline for recovery.
Blue Yonder, acquired by Panasonic in 2021, provides an end-to-end supply chain platform for warehouse management. It can also be used for demand forecasting and automated ordering.
The company lends its name to several other high-profile businesses. Customersincluding UK supermarket giants Tesco and Asda, DHL, Walgreens, Philip Morris, and Carlsberg. None of these companies have yet acknowledged being affected, and there is no word on what kind of data the ransomware group accessed from victims.
At the time of publication, no ransomware group had claimed responsibility for the hack. This may suggest that Blue Yonder gave in to its demands, as attackers often do not admit their involvement in the matter or the data leak.
See: Paying the ransom should be your last resort, say cyber security experts.
Supply chain, ransomware attacks are on the rise.
In recent years, Supply chain attacks Cyber security has become a growing concern in the landscape. Attacks on Solar Winds, Log4jand Codecov are notable. Supply chain attacks are particularly attractive to cybercriminals because they offer multiple rewards for a single breach.
Thirty-one percent of organizations. According to AppOmni, software-as-a-service data breaches occurred in the last 12 months, a 5% increase over the previous year. This increase can be attributed to insufficient visibility of the increasing number of apps deployed. According to Onymos, the average enterprise now relies on More than 130 SaaS applications Compared to only 80 in 2020.
last year, British Airways, the BBC and Boots were all given ultimatums. After being hit by a supply chain attack by ransomware group Clip. Clop exploited. SQL injection vulnerability into popular business software MOVEit and accessed its servers to steal business data.
Ransomware attacks are also on the rise. Microsoft reported 2.75 times increase Ransomware attempts this year, while the second quarter of this year saw Highest number of active ransomware groups on record. indeed, Artificial intelligence can lower the barrier to entry. To carry out these attacks, widen the pool of individuals who can do so.
Global Ransomware Payout exceeded $1 billion for the first time. In 2023 “Big game hunting,” where groups go after large organizations and demand ransoms of more than $1 million, is increasing in prevalence, and victimized organizations are often tempted to pay up.