UNFI restores systems after cyberattack, resumes Whole Foods supply

United Natural Foods (UNFI) has successfully restored operations following a cybersecurity incident that disrupted its supply chain, including deliveries to Whole Foods stores. The grocery wholesaler confirmed its electronic ordering and invoicing systems are back online after containing the attack that initially forced partial system shutdowns in early June.

In regulatory filings, UNFI acknowledged the breach may significantly affect its fourth-quarter financial performance for fiscal year 2025, citing reduced sales and higher operational costs during recovery efforts. The company also expects ongoing expenses tied to investigating and resolving the incident, though it anticipates cybersecurity insurance will cover most liabilities.

The Rhode Island-based distributor, which reported $31 billion in annual revenue last year, supplies fresh and frozen goods to over 30,000 locations across North America. While the attack temporarily disrupted deliveries, UNFI emphasized no consumer data or protected health information was compromised, eliminating the need for individual breach notifications.

External cybersecurity teams and law enforcement agencies were brought in to assess the incident, though UNFI has not revealed whether ransomware was involved or if any group claimed responsibility. The company joins a growing list of food industry targets, following high-profile attacks on Sam’s Club and JBS Foods, which paid an $11 million ransom in 2021.

Cybercriminals have increasingly focused on retail and logistics networks, with groups like Scattered Spider and DragonForce expanding operations from UK retailers to U.S. businesses. As UNFI works toward full recovery, industry experts warn similar attacks could escalate without strengthened defenses across critical supply chains.

(Source: BLEEPINGCOMPUTER)