- United Natural Foods confirms cyber attack
- He said that some parts of his infrastructure were forced offline and that delays could occur
- No threats, the actors have not yet assumed responsibility
United Natural Foods, the largest wholesale distributor in North America, confirmed that he had undergone a cyber attack that forced him to draw parts of his offline computer infrastructure.
In a new 8-K form filed with the Securities and Exchange Commission (SEC) of the United States, the company said that it worked with third-party cybersecurity experts to assess and mitigate damage.
The incident caused “temporary disturbances” to the commercial operations of United Natural Foods, it was also said, while the company works on the evaluation, attenuation and repair of the incident with the help of third-party experts. Police were also informed of the attack.
Unknown
“On June 5, 2025, United Natural Foods became aware of unauthorized activity on some of its information technology systems (TI),” said the file.
“The company has quickly activated its response plan to incidents and implemented containment measures, in particular by proactively taking certain offline systems, which has temporarily had an impact on the company’s ability to execute and distribute client orders.”
Although other details were not shared, companies generally remove offline systems when they undergo ransomware attack, as it is the best way to prevent additional devices to be encrypted. It also prevents actors from the threat of exfiltration of sensitive network files, which is standard practice with ransomware attackers these days.
“The company continues to work to restore its systems to bring them back safely online,” concludes the document. “The survey to assess the impact and scope of the incident remains in progress and is in its early days.”
Based in Providence, Rhode Island, and provides more than 30,000 retail locations in the United States and Canada, United Natural Foods is the largest wholesale of natural, organic and conventional grocery products in North America, including the main supplier of Whole Foods belonging to Amazon.
No hacking group has yet claimed the responsibility of this attack.
Via Bleeping Compompute
