JBS Moves to Reopen ‘Vast Majority’ of Plants After Cyberattack
Posted: Wed Jun 02, 2021 4:38 am
https://www.bloomberg.com/news/articles/2021-06-02/jbs
JBS SA, the largest meat producer globally, has made “significant progress” to resolve the cyberattack that impacted its global operations and will have the “vast majority” of its plants operational on Wednesday.
“Our systems are coming back online and we are not sparing any resources to fight this threat,” JBS USA Chief Executive Officer Andre Nogueira said in a statement late Tuesday.
The cyberattack forced the shutdown of all of JBS’s U.S. beef plants -- facilities that account for almost a quarter of American supplies -- according to an official with the United Food and Commercial Workers International Union, which represents workers at the company’s plants in the U.S. All other JBS meatpacking facilities in the country experienced some level of disruption.
The weekend attack on the Sao Paulo-based company’s computer networks also forced shutdowns at slaughter operations across Australia and idled one of Canada’s largest beef plants. It’s unclear exactly how many plants globally have been affected because JBS has yet to release those details. The global shutdowns upended agricultural markets and raised concerns about food security as hackers increasingly target critical infrastructure. Livestock futures slumped, while pork prices rose.
A
notorious Russia-linked hacking group is behind the cyberattack against JBS, according to four people familiar with the campaign who were not authorized to speak publicly on the matter. The cybergang goes by the name REvil or Sodinokibi.
While it’s unclear if all of REvil’s hackers operate in Russia, the group’s public face, a user on the dark web cyber-crime forum XSS who goes by the name “Unknown,” exclusively publishes in Russian. REvil typically uses a dark web blog dubbed, “Happy Blog” to name and shame victims when they decline to engage in ransom negotiations.
The JBS attack comes just three weeks after Colonial Pipeline Co., operator of the biggest U.S. gasoline pipeline, was targeted in a ransomware attack that was attributed to a group called DarkSide. Experts have said there is some evidence linking the group to Russia. That followed a series of devastating hacks against Am gov agencies, businesses and health facilities, also often blamed on Russia or Russia-based hackers at a fraught time in relations between the countries.
Meanwhile, the JBS attack is also thrusting America’s system of churning out cheap meat back into the spotlight.
It’s always an inside job !
JBS SA, the largest meat producer globally, has made “significant progress” to resolve the cyberattack that impacted its global operations and will have the “vast majority” of its plants operational on Wednesday.
“Our systems are coming back online and we are not sparing any resources to fight this threat,” JBS USA Chief Executive Officer Andre Nogueira said in a statement late Tuesday.
The cyberattack forced the shutdown of all of JBS’s U.S. beef plants -- facilities that account for almost a quarter of American supplies -- according to an official with the United Food and Commercial Workers International Union, which represents workers at the company’s plants in the U.S. All other JBS meatpacking facilities in the country experienced some level of disruption.
The weekend attack on the Sao Paulo-based company’s computer networks also forced shutdowns at slaughter operations across Australia and idled one of Canada’s largest beef plants. It’s unclear exactly how many plants globally have been affected because JBS has yet to release those details. The global shutdowns upended agricultural markets and raised concerns about food security as hackers increasingly target critical infrastructure. Livestock futures slumped, while pork prices rose.
A
notorious Russia-linked hacking group is behind the cyberattack against JBS, according to four people familiar with the campaign who were not authorized to speak publicly on the matter. The cybergang goes by the name REvil or Sodinokibi.
While it’s unclear if all of REvil’s hackers operate in Russia, the group’s public face, a user on the dark web cyber-crime forum XSS who goes by the name “Unknown,” exclusively publishes in Russian. REvil typically uses a dark web blog dubbed, “Happy Blog” to name and shame victims when they decline to engage in ransom negotiations.
The JBS attack comes just three weeks after Colonial Pipeline Co., operator of the biggest U.S. gasoline pipeline, was targeted in a ransomware attack that was attributed to a group called DarkSide. Experts have said there is some evidence linking the group to Russia. That followed a series of devastating hacks against Am gov agencies, businesses and health facilities, also often blamed on Russia or Russia-based hackers at a fraught time in relations between the countries.
Meanwhile, the JBS attack is also thrusting America’s system of churning out cheap meat back into the spotlight.
It’s always an inside job !