Summary
A ransomware attack on Blue Yonder, a supply chain software provider for major supermarkets and fast-moving consumer goods (FMCG) suppliers, has severely disrupted operations. Blue Yonder confirmed the attack impacted its private cloud services, which support demand forecasting, automated ordering, and warehouse and supply management. A task force, alongside with third-party cybersecurity firms, is addressing the issue and communicating with affected clients.
Key customers include major UK supermarkets, including Morrisons, along with FMCG suppliers including ABInBev, Diageo, and Kimberly-Clark. Morrisons, heavily reliant on Blue Yonder for fresh and chilled goods forecasting, has shifted to a manual backup system. This has disrupted the flow of goods, with suppliers unable to deliver stock and some orders being canceled. Morrisons warned wholesale and convenience customers of potential drops in availability, with some supply lines expected to fall as low as 60%.
Blue Yonder continues to work on resolving the issue and is keeping clients updated as they work to restore normal operations. The incident highlights vulnerabilities in supply chain software and the potential widespread impact of such cyberattacks and RH-ISAC will continue to monitor the situation as it develops.
Statement from Blue Yonder: “”Blue Yonder can confirm that ransomware has been detected, which is currently impacting our private cloud. This is not impacting our public cloud or commerce customers nor does it impact the on premise Advanced Store Replenishment solution. A Blue Yonder task force is investigating and addressing this issue alongside external cybersecurity firms. We have notified our private cloud customers and will continue to communicate as appropriate.”
