«
»

Blue Yonder Hit By Ransomware Attack That Is Affecting Other Companies

Blue Yonder, a major software supply-chain company, and a unit of Panasonic said over the weekend it was hit by a ransomware attack.

The Arizona-based software firm, which counts US and UK grocery stores and Fortune 500 firms as clients, said the attack affected a private cloud computing service the company provides some customers, but not the company’s public cloud environment.

  “On November 21, 2024, Blue Yonder experienced disruptions to its managed services hosted environment, which was determined to be the result of a ransomware incident,” Blue Yonder said in a public statement on Friday.

The company said in an updated statement on Saturday it was making “steady progress” in its recovery but still did not have a “timeline for restoration.”

  “We have reverted to a backup process but the outage has caused the smooth flow of goods to our stores to be impacted,” said a spokesperson for Morrisons, which has nearly 500 grocery stores across the United Kingdom.

Some of the biggest US grocery chains use Blue Yonder, including Safeway and Jewel-Osco, and Kroger.

Lawrence Pingree, Vice President, Dispersive had this to say:

“One benefit of isolation of systems is that companies can readily avoid many negative affects such as lateral movement (often part of ransomware attacks). In the past these have been called DMZs, today micro-segmentation is popular for reducing the risks of lateral movement, along with living off the land detection in EDR tools. But the best way to protect from lateral movement is to isolate systems and enhance authentication with MFA.”

The timing of this sucks as this is just before Thanksgiving. And part of me wonders if that is deliberate given who Blue Yonder’s customers are. Regardless, it just illustrates that organizations need to all that they can to ensure that they’re not a story that someone like me is writing about.

This entry was posted on November 25, 2024 at 1:48 pm and is filed under Commentary with tags . You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

One Response to “Blue Yonder Hit By Ransomware Attack That Is Affecting Other Companies”

  1. The Pwnage Of Blue Yonder Is Worse Than Was Previously Thought | The IT Nerd Says:
    November 26, 2024 at 9:01 am

    […] I reported on a company called Blue Yonder getting pwned by ransomware. And with that some of their customers […]

    Reply

Leave a Reply

Discover more from The IT Nerd

Subscribe now to keep reading and get access to the full archive.

Continue reading