Top Posts
Most Shared
Most Discussed
Most Liked
Most Recent
By Paula Livingstone on Jan. 24, 2023, 7:07 a.m.
Tagged with: Training Cybersecurity Security Supply Chain Risk Management Threat Detection Critical Infrastructure Vulnerabilities Backups Data Breach Encryption Food Supply Incident Response Ransomware Resilience
Ransomware is a type of malicious software that encrypts the victim's files and demands a ransom for their decryption. It is one of the most prevalent and damaging cyber threats in the world today, affecting various sectors and organizations, from hospitals and schools to governments and businesses.
One of the recent victims of ransomware was Dole Food Company, the world's largest producer and marketer of fresh fruits and vegetables. In February 2023, Dole suffered a sophisticated cyber attack that affected its operations and employee data.
What happened?
According to a company memo obtained by CNN, Dole's IT systems were compromised by an unknown hacker group on February 19, 2023. The attackers deployed ransomware on Dole's network, encrypting company files and rendering them unusable. The attackers also stole the sensitive data of an unknown number of Dole's employees, according to a filing with the U.S. Securities and Exchange Commission (SEC) from the company.
The attack caused temporary shutdowns of some of Dole's North American production plants and suspended food shipments to grocers. Some customers complained about the shortage of Dole-made salad kits on social media. The impact on operations was described as "limited" by Dole, and the company quickly moved to contain the threat and deploy a "Manual Backup Program" to resume its activities.
Dole notified law enforcement and engaged third-party cybersecurity experts to remediate the issue and secure its systems. The company did not disclose whether it paid any ransom to the attackers or how much it was demanded. The details of the data breach are still unclear, and no threat actor has claimed responsibility or announced the attack on their data leak website.
Why does it matter?
The Dole ransomware cyber attack is another example of how cyber criminals are targeting critical infrastructure and essential services with devastating consequences. Ransomware attacks can disrupt the supply chain, affect public health and safety, and cause financial losses and reputational damage to the victims.
The Dole attack is similar to the June 2021 cyber attack on meat processing company JBS USA, which paid a ransom of US$11 million to end a major cyber-attack. JBS' computer networks were hacked at the time, temporarily shutting down operations in Australia, Canada, and the U.S.
These attacks highlight the need for stronger cybersecurity measures and resilience among industrial organizations, especially those that operate in the food sector. Food security is vital for human survival and well-being, and any disruption or contamination can have serious consequences for consumers and society.
What can be done?
There is no silver bullet solution for preventing or stopping ransomware attacks, but there are some best practices that can help reduce the risk and impact of such incidents. Some of these include:
Implementing a robust backup strategy that ensures regular backups of important data and systems, and storing them offline or in a separate location. Updating and patching software and hardware regularly to fix any vulnerabilities that could be exploited by hackers. Educating and training employees on how to recognize and avoid phishing emails and malicious attachments that could deliver ransomware or other malware. Using strong passwords and multi-factor authentication for accessing online accounts and services. Segregating and isolating network segments to limit the spread of ransomware or other malware within the organization. Having an incident response plan that outlines the roles and responsibilities of different stakeholders, as well as the steps to take in case of a cyber attack. Collaborating with other organizations, industry partners, law enforcement agencies, and cybersecurity experts to share information and best practices on cyber threats and solutions. Ransomware is not going away anytime soon, but by following these best practices, organizations can better protect themselves and their customers from this growing menace.
No comments yet. Why not be the first to comment?