The Dutch conglomerate behind a number of main U.S. grocery store manufacturers confirmed on Thursday that information was stolen from its programs throughout a cyberattack last fall.
Ahold Delhaize USA said an investigation has revealed that hackers stole information from “inside U.S. enterprise programs in reference to the prior cybersecurity subject.”
The guardian firm of Cease & Store, Hannaford, Meals Lion, and Large Meals, Ahold Delhaize USA has greater than 2,000 shops throughout the nation. In November, customers throughout the nation have been unable to place grocery delivery orders on-line and web sites for a number of the grocery store manufacturers have been offline.
The INC ransomware gang took credit on Wednesday for the cyberattack, claiming to have stolen six terabytes of data.
Ahold Delhaize USA wouldn’t touch upon the claims made by the group however shared a press release with Recorded Future Information resembling the one printed on its web site.
A spokesperson stated the corporate’s groups “have been working diligently to find out what data might have been affected” however famous the enterprise impression of the assault “was mitigated by our cyber-defense capabilities and response protocols.”
“The investigation stays ongoing, with the help of exterior cybersecurity consultants,” they stated. “If we decide that non-public information was impacted, we are going to notify affected people as acceptable. As well as, we’ve got notified and up to date regulation enforcement.”
Ahold Delhaize is without doubt one of the world’s largest meals retail teams, reporting internet gross sales in 2023 of greater than $24 billion.
In line with researchers on the cybersecurity agency SentinelOne, the INC ransomware group emerged in July 2023.
The gang has persistently focused European governments and enormous corporations over the past two years. Google risk researchers stated in March 2024 they noticed a cybercriminal related to the gang searching for “illicit entry to Dutch and French medical, authorities and academic organizations.”
Menace actors related to the gang have additionally attacked the State Bar of Texas, a prominent healthcare system in Michigan, Yamaha Motor and printer manufacturer Xerox.
The group was liable for hacking into Hungary’s defense procurement agency in November 2024. Secureworks tracked 72 victims on the INC ransomware leak website from August 2023 by March 2024.
Cybersecurity consultants at Palo Alto Networks and Group-IB beforehand stated one other ransomware gang, referred to as Lynx, is both a rebrand of INC or bought the group’s supply code and lately attacked Romania’s largest electrical energy supplier.
Recorded Future
Intelligence Cloud.
