Provide chain administration agency Blue Yonder is warning {that a} ransomware assault brought about important disruption to its providers, with the outages impacting grocery retailer chains within the UK.
Blue Yonder (previously JDA Software program) operates as a Panasonic subsidiary with an annual income of over a billion USD and 6,000 workers.
The corporate affords AI-driver provide chain options to retailers, producers, and logistics suppliers, encompassing demand forecasting, stock optimization, and transportation administration.
Amongst its 3,000 clients are high-profile organizations like DHL, Renault, Bayer, Morrisons, Nestle, 3M, Tesco, Starbucks, Ace {Hardware}, Procter & Gamble, Sainsbury, and 7-Eleven.
Ransomware assault disrupts provide chain
On Friday, the corporate warned that it was experiencing disruptions to its managed providers internet hosting setting on account of a ransomware incident that occurred the day earlier than, on November 21.
“On November 21, 2024, Blue Yonder experienced disruptions to its managed services hosted environment, which was determined to be the result of a ransomware incident,” reads the announcement.
“Since learning of the incident, the Blue Yonder team has been working diligently together with external cybersecurity firms to make progress in their recovery process. We have implemented several defensive and forensic protocols.”
Blue Yonder claims it has detected no suspicious exercise in its public cloud setting and continues to be processing a number of restoration methods.
The managed providers setting refers back to the infrastructure and methods that Blue Yonder operates on behalf of its clients, sometimes together with SaaS platforms and cloud-hosted options for provide chain operations.
As anticipated, this has impacted shoppers immediately, as a spokesperson for UK grocery retailer chain Morrisons has confirmed to the media they’ve reverted to a slower backup course of. Sainsbury instructed CNN that it had contigency plans in place to beat the disruption.
A Saturday replace knowledgeable clients that the restoration of the impacted providers continued, however no particular timelines for full restoration may very well be shared but.
One other replace printed on Sunday reiterated the identical, urging shoppers to watch the shopper replace web page on Blue Yonder’s web site over the approaching days.
As of publishing, the corporate has not issued an replace concerning the state of affairs but, so it is assumed that the managed providers setting stays impacted.
BleepingComputer has not but seen any bulletins from ransomware gangs taking duty for the assault at Blue Yonder.
