Dole Food Company has confirmed that threat actors behind a February ransomware attack have accessed the information of an undisclosed number of employees.
Dole employs around 38,000 people worldwide, providing fresh fruits and vegetables to customers in more than 75 countries.
In the annual report filed with the U.S. Securities and Exchange Commission (SEC), the company revealed that the cyberattack directly impacted its employees’ information.
The company stated that it promptly took steps to contain the attack, retained the services of leading third-party cybersecurity experts and notified law enforcement. The attack was disclosed after customers complained about delays and shortages of Dole products on store shelves for over a week.
While the company said the ransomware attack had limited impact, it was forced at the time to shut down production plants across North America.
A memo sent to American stores leaked online by Texan Stewart’s grocery store said that Dole would implement a crisis management protocol that included what was described as the “Manual Backup Program.”
This likely meant that the company would return to manual operations, which would’ve helped resume production and shipments, although at a much slower pace.
Dole has yet to reveal the number of employees affected by the attack or the amount of information that was accessed.
The company is the latest high-profile target of a cyberattack, highlighting the ongoing cybersecurity risks that businesses face.
Ransomware attacks are becoming increasingly sophisticated and devastating, and their frequency is increasing. The attack on Dole shows that even large corporations with advanced cybersecurity measures in place are still vulnerable to these attacks.
Businesses must take steps to protect their data and employees from cybercriminals, including training staff on cybersecurity best practices, implementing security measures such as firewalls and antivirus software, and regularly backing up critical data.
