Blue Yonder Hit by Ransomware Attack, Disrupting Supply Chain Operations for Major Retailers
Blue Yonder, a leading supply chain management software provider acquired by Panasonic in 2021, confirmed its managed services environment was disrupted by a ransomware attack on Thursday. The Arizona-based company serves global grocers, retailers, and logistics firms, helping streamline operations for high-profile clients.
The attack prompted Blue Yonder to engage external cybersecurity experts and deploy defensive and forensic measures to contain the breach and assess its scope. While the company is actively monitoring its Azure public cloud environment reporting no signs of further suspicious activity officials have not provided an estimated timeline for full restoration.
Among those affected, U.K. grocery chain Morrisons confirmed the incident disrupted its warehouse management system for fresh food and produce. The retailer stated it is operating on backup systems while working to maintain customer deliveries nationwide. No group has claimed responsibility for the attack, and details on compromised data remain undisclosed.
Blue Yonder has notified impacted customers and is providing ongoing updates as the investigation continues. The timing of the attack just days before the U.S. Thanksgiving holiday adds pressure on retailers, who rely on peak operational efficiency during this critical sales period.
The incident follows a separate cyberattack earlier this month on Ahold Delhaize’s U.S. operations, though it remains unclear whether ransomware was involved in that case.
Source: https://www.cybersecuritydive.com/news/ransomware-supply-chain-blue-yonder-thanksgiving/733888/
Morrisons TPRM report: https://www.rankiteo.com/company/morrisonsjobs
"id": "mor1771252089",
"linkid": "morrisonsjobs",
"type": "Cyber Attack",
"date": "11/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Global grocers, retailers, and '
'logistics firms',
'industry': 'Technology, Supply Chain, Logistics',
'location': 'Arizona, USA',
'name': 'Blue Yonder',
'type': 'Supply chain management software provider'},
{'customers_affected': 'Nationwide customers',
'industry': 'Retail, Grocery',
'location': 'United Kingdom',
'name': 'Morrisons',
'type': 'Grocery chain'}],
'customer_advisories': 'Notified impacted customers, providing ongoing '
'updates',
'date_detected': '2023-11-23',
'description': 'Blue Yonder, a leading supply chain management software '
'provider, confirmed its managed services environment was '
'disrupted by a ransomware attack on Thursday. The attack '
'impacted global grocers, retailers, and logistics firms, '
'including U.K. grocery chain Morrisons, which experienced '
'disruptions to its warehouse management system for fresh food '
'and produce. The company engaged external cybersecurity '
'experts and deployed defensive and forensic measures to '
'contain the breach. No group has claimed responsibility, and '
'details on compromised data remain undisclosed.',
'impact': {'operational_impact': 'Disrupted supply chain operations for major '
'retailers, including warehouse management '
'for fresh food and produce',
'systems_affected': 'Managed services environment, warehouse '
'management system'},
'investigation_status': 'Ongoing',
'references': [{'source': 'Cyber Incident Description'}],
'response': {'communication_strategy': 'Notified impacted customers, '
'providing ongoing updates',
'containment_measures': 'Defensive and forensic measures '
'deployed',
'enhanced_monitoring': 'Actively monitoring Azure public cloud '
'environment',
'incident_response_plan_activated': True,
'recovery_measures': 'Actively monitoring Azure public cloud '
'environment, operating on backup systems',
'third_party_assistance': 'External cybersecurity experts'},
'title': 'Blue Yonder Hit by Ransomware Attack, Disrupting Supply Chain '
'Operations for Major Retailers',
'type': 'Ransomware'}