.jpg)
<
p style=”text-align: justify;”>Blue Yonder, a prominent supply chain software provider used by major U.S. grocery chains like Safeway and Fred Meyer, is investigating a significant cyberattack. The ransomware group Termite has claimed responsibility, threatening to publish 680 gigabytes of stolen data, including documents, reports, and email lists, if its claims are verified.
The Cyberattack
On November 21, 2024, Blue Yonder, an Arizona-based company serving clients such as DHL, Starbucks, and Walgreens, experienced a ransomware incident that compromised its network and disrupted services. Though the company confirmed the attack, it has refrained from naming the perpetrators or specifying the type of data stolen. However, Termite has indicated plans to use the stolen data for future attacks.
Similarities to Babuk Ransomware
Security experts suspect that Termite might be a rebranding of the notorious Russian-linked Babuk ransomware group, responsible for over 65 attacks and $13 million in ransom payments as per the U.S. Department of Justice. Researchers from Cyble and Broadcom have observed Termite using a modified version of Babuk’s ransomware strain, further linking the two groups.
Operational Disruptions
The attack caused significant operational disruptions for Blue Yonder’s clients, including major UK supermarkets. One of the largest food retailers, Morrisons, f
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.