- United Natural Foods confirms Cyberattack
- It said that parts of its infrastructure were forced offline and delays may occur
- No threat actors have taken on the responsibility yet
United Natural Foods, North America’s largest wholesale distributor, has confirmed that it suffered a cyberattack that forced it to pull parts of its IT infrastructure offline.
In a new 8-k form submitted to the US Securities and Exchange Commission (SEC), the company said it worked with third-party cybersecurity experts to assess and mitigate the damage.
The incident caused “Temporary Disruptions” to United Natural Foods’ business operations, it was further said as the company is working to assess, mitigate and remedy the incident using third -party experts. Police were also notified of the attack.
Unknown guilty
“On June 5, 2025, United Natural Foods became aware of unauthorized activity on some of its information technology (IT) systems,” the archiving states.
“The company immediately activated its incident response plan and implemented inclusion measures, including proactively taking certain systems offline, which has temporarily affected the company’s ability to fulfill and distribute customer orders.”
While other details were not shared, companies usually take systems offline when they suffer from a ransomware attack as it is the best way to prevent additional devices from being encrypted. It also prevents the threat actors from ex -filtering sensitive files from the network, which are standard practices with ransomware -attackers these days.
“The company continues to work to restore its systems to safely bring them back online,” concludes the document. “The study to assess the effect and extent of the incident remains in progress and is in its early stages.”
With headquarters in Providence, Rhode Island and delivers more than 30,000 retail sites across the United States and Canada, United Natural Foods is the largest wholesale distributor of natural, organic and conventional grocery products in North America, including being the largest supplier of Amazon-owned Whole Foods.
No hacking groups have yet assumed responsibility for this attack.
Via Bleeping computer
