The world’s largest meat processor has been forced to cut the servers supporting two major global markets after an organized cyber-attack.
Sao Paolo-headquartered JBS noted in a statement today (via Beef Central) that its US division detected the attack on Sunday. It apparently affected some of the servers used to power its North American and Australian IT systems.
“The company took immediate action, suspending all affected systems, notifying authorities and activating the company’s global network of IT professionals and third-party experts to resolve the situation,” JBS added.
“The company’s backup servers were not affected, and it is actively working with an incident response firm to restore its systems as soon as possible.”
JBS said no customer, supplier or employee data appears at this stage to have been stolen, but warned that getting systems back on track will take time — which in turn could “delay certain transactions with customers and suppliers.”
This already appears to be happening in Australia, where reports suggest beef and lamb kills across the country were cancelled. Operationally, IT systems are vital to manage the continuous movement of cattle from onboarding to slaughter.
It’s unclear exactly what kind of cyber-attack affected the company, but ransomware would be a prime suspect, given the need to take key servers offline and the possibility of data theft.
With global revenue exceeding $50 billion last year, JBS is a candidate for extortion by the growing group of ransomware-as-a-service (RaaS) affiliates targeting large multi-nationals with sophisticated multi-stage attacks.
Scott Nicholson, co-CEO, at cybersecurity consultancy, Bridewell Consulting, argued that the cost of disruption to the firm would be significant, even if no data was stolen.
“This should act as a reminder to all companies of the importance of cybersecurity and protecting digital infrastructure,” he added.
“Even the largest corporations are susceptible to attacks, so there’s no room for complacency. All organizations must take steps to protect their systems and ultimately customer data, or risk putting their reputation and customer safety at risk.”