Image Not FoundImage Not Found

  • Home
  • Computing
  • Supply Chain Giant Blue Yonder Faces Data Theft Threat After Ransomware Attack
Supply Chain Giant Blue Yonder Faces Data Theft Threat After Ransomware Attack

Supply Chain Giant Blue Yonder Faces Data Theft Threat After Ransomware Attack

Blue Yonder Investigates Data Theft Claims Following Ransomware Attack

Blue Yonder, a leading supply chain software provider, is currently investigating claims of data theft in the wake of a ransomware attack that occurred on November 21. The company, which initially described the incident as a “ransomware incident,” is now facing threats from the “Termite” ransomware group, which claims to have stolen 680 gigabytes of sensitive data.

According to Termite, the stolen information includes documents, reports, insurance documents, and email lists. The group has stated its intention to use this data for future attacks, raising concerns about potential widespread implications.

Blue Yonder has responded by engaging external cybersecurity experts to investigate the validity of these claims. The company is working diligently to assess the situation and determine the extent of any potential data breach.

The Termite ransomware group is believed to be a rebranding of the Russia-linked Babuk ransomware group, known for its involvement in over 65 attacks and receiving approximately $13 million in ransom payments. Security experts have noted similarities between the Termite and Babuk ransomware strains, suggesting a possible connection.

As the investigation continues, Termite has listed six other victims on its dark web leak site and is threatening to publish Blue Yonder’s data. It remains unclear whether a ransom demand has been made, and Blue Yonder has not disclosed specific details about the allegedly stolen data.

The company has informed affected customers and is actively working to restore its operations. However, the full impact on Blue Yonder’s extensive customer base, which includes over 3,000 clients, is yet to be determined.

Several high-profile customers have already reported disruptions due to the attack. U.K. supermarket chains Morrisons and Sainsbury’s, as well as global coffee giant Starbucks, have confirmed experiencing operational issues. Starbucks, in particular, reported that the attack forced store managers to manually calculate employees’ pay.

As the situation unfolds, businesses and cybersecurity experts alike are closely monitoring the developments, highlighting the growing threat of ransomware attacks on critical supply chain infrastructure.