Ransomware Attack on Peter Green Chilled Disrupts UK Food Supply Chain
A ransomware attack on Peter Green Chilled, a key distributor of refrigerated goods to major UK supermarkets, has caused significant disruptions to food deliveries across the country. The incident adds to a growing wave of cyberattacks targeting the retail and logistics sectors, following recent breaches at Marks & Spencer, the Co-op, and Harrods.
The attack has exposed vulnerabilities in the UK’s supply chain, leading to delays, potential shortages, and concerns over consumer panic buying. Experts warn that such disruptions highlight the high stakes of cybersecurity in retail, where even brief outages can ripple through digital and physical operations.
Andy Norton, European Cyber Risk Officer at Armis, emphasized that the sector’s reliance on digital supply chains, operational continuity, and customer data makes it a prime target. Data from Armis Labs shows 41% of retailers have faced increased cyber threats in the past six months, with 79% of IT decision-makers prioritizing proactive cybersecurity measures in the coming year. However, nearly half of surveyed retailers admit past breaches have left their systems inadequately secured, while 46% struggle with evolving regulatory complexities.
Security analysts, including Nir Dvorkin of Cynet Security, link the attack to Scattered Spider (UNC3944), a group known for sophisticated tactics like phishing, SIM-swapping, and help desk impersonation. The group’s methods blend social engineering with the exploitation of legitimate remote access tools, making detection difficult. Dvorkin stressed that these attacks are not opportunistic but meticulously planned to bypass defenses.
To counter such threats, experts recommend a layered defense strategy, including enforced multi-factor authentication (MFA), restricted remote access, and employee training to recognize social engineering attempts. Despite growing awareness 82% of retail employees know how to report suspicious activity only 46% of organizations claim real-time detection and response capabilities.
With high-profile groups like Anonymous, DarkSide, and APT41 posing persistent threats, the retail sector faces mounting pressure to strengthen cyber defenses. The attack on Peter Green Chilled underscores how digital threats now directly impact the physical supply of essential goods, reinforcing the need for enhanced security, training, and regulatory alignment.
Source: https://securitybrief.co.uk/story/ransomware-attack-hits-food-supply-chain-exposes-retail-risks
The Co-Operative Food cybersecurity rating report: https://www.rankiteo.com/company/the-co-operative-food
Harrods cybersecurity rating report: https://www.rankiteo.com/company/harrods
Marks and Spencer cybersecurity rating report: https://www.rankiteo.com/company/marks-and-spencer
Peter Green Chilled cybersecurity rating report: https://www.rankiteo.com/company/peter-green-chilled
"id": "THEHARMARPET1770508437",
"linkid": "the-co-operative-food, harrods, marks-and-spencer, peter-green-chilled",
"type": "Cyber Attack",
"date": "5/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 'Major UK supermarkets',
'industry': 'Logistics/Retail',
'location': 'UK',
'name': 'Peter Green Chilled',
'type': 'Distributor'}],
'attack_vector': ['Phishing',
'SIM-swapping',
'Help desk impersonation',
'Exploitation of legitimate remote access tools'],
'description': 'A ransomware attack on Peter Green Chilled, a key distributor '
'of refrigerated goods to major UK supermarkets, has caused '
'significant disruptions to food deliveries across the '
'country. The incident adds to a growing wave of cyberattacks '
'targeting the retail and logistics sectors, following recent '
'breaches at Marks & Spencer, the Co-op, and Harrods. The '
'attack has exposed vulnerabilities in the UK’s supply chain, '
'leading to delays, potential shortages, and concerns over '
'consumer panic buying.',
'impact': {'operational_impact': 'Disruptions to food deliveries, delays, '
'potential shortages, and concerns over '
'consumer panic buying'},
'lessons_learned': 'The attack underscores the high stakes of cybersecurity '
'in retail, where even brief outages can ripple through '
'digital and physical operations. Retailers must adopt a '
'layered defense strategy, including enforced multi-factor '
'authentication (MFA), restricted remote access, and '
'employee training to recognize social engineering '
'attempts.',
'post_incident_analysis': {'root_causes': 'Reliance on digital supply chains, '
'inadequate cybersecurity measures, '
'and evolving regulatory '
'complexities. Nearly half of '
'surveyed retailers admit past '
'breaches have left their systems '
'inadequately secured.'},
'ransomware': {'data_encryption': 'Yes'},
'recommendations': ['Enforced multi-factor authentication (MFA)',
'Restricted remote access',
'Employee training to recognize social engineering '
'attempts',
'Layered defense strategy',
'Enhanced monitoring and real-time detection '
'capabilities'],
'references': [{'source': 'Armis'}, {'source': 'Cynet Security'}],
'threat_actor': 'Scattered Spider (UNC3944)',
'title': 'Ransomware Attack on Peter Green Chilled Disrupts UK Food Supply '
'Chain',
'type': 'Ransomware'}