Contents:
Sysco food distributor announced recently that its network was breached, and business, customer, and employee data was compromised.
According to an internal memo the company sent to its employees on May 3rd, data belonging to customers and suppliers in the U.S. and Canada were allegedly impacted by the data breach.
Sysco claims they had become aware that a threat actor gained unauthorized access to their network on March 5th this year. However, they suspect the attack began a few months earlier on January 14th.
After detecting the intrusion, Sysco notified federal law enforcement and started an investigation, under the guidance of cybersecurity and forensics professionals.
More About the Impact of the Attack
The analysis made it clear that the hackers managed to exfiltrate information regarding operating the business, customers, and employees.
The investigation determined that the threat actor extracted certain company data, including data relating to the operation of the business, customers, employees, and personal data.
The investigation is ongoing, and Sysco has begun the process of preparing to comply with its obligations with respect to the extracted data.
Researchers suspect that among the employees’ stolen data are:
- names
- social security number
- account numbers
- other personal information that Sysco had for payroll purposes.
According to the company, the data breach did not affect its operational systems or any related business functions. Therefore, Sysco was able to provide its services to its customers uninterrupted.
Sysco also claims it succeeded to secure its network. The security team enforced additional protection measures to prevent another data breach incident.
Sysco is a 71,000-employee and $68 billion/ year in sales leading global food distribution company. It manages 333 distribution facilities around the world and provides its services to 700,000 customer locations. Among its clients, there are restaurants, healthcare, and educational facilities.
If you liked this article, follow us on LinkedIn, Twitter, Facebook, and Youtube, for more cybersecurity news and topics.