Cyberattack disrupts grocery supply chains across North America
- On June 5, 2025, a cyberattack severely disrupted operations at United Natural Foods Inc., affecting grocery supply chains.
- The attack resulted in halted deliveries to over 30,000 stores and ongoing supply issues even weeks after the incident.
- This incident highlights the critical need for enhanced cybersecurity measures across the food supply sector.
On June 5, 2025, a significant cyberattack targeted United Natural Foods Inc. (UNFI), a major grocery wholesaler and the primary distributor for Whole Foods Market, resulting in substantial operational disruptions. The attack led to the shutdown of UNFI's systems and forced the halt of deliveries to over 30,000 grocery stores throughout North America. Following the incident, UNFI struggled to restore its digital systems, which rendered them unable to efficiently manage product deliveries and maintain inventory levels for many retail partners. In the aftermath, UNFI sought to circumvent the impact of the failure through manual processes, but these measures proved inadequate as many stores reported empty shelves and significant inventory shortages. Nearly two weeks later, the company continued to operate on a limited basis, facing ongoing challenges in fulfillment and delivery. Such vulnerabilities in the digital infrastructure of critical supply chains have raised alarms about the broader impacts of cyberattacks, especially following recent incidents affecting other food supply companies. This incident is part of a growing trend in the supply chain sector where food distributors face increasing risks from cyber incidents. In the case of UNFI, while the company has not classified the breach as ransomware, similar cyberattacks in the industry have resulted in encrypted systems and demands for ransom, illustrating the potential severity of threats targeting food distribution. Recent data indicate that disruptions in food distribution can lead to safety concerns for public food supply. The ripple effects from the UNFI breach could have long-term implications for retailers, suppliers, and ultimately consumers. As the food supply chain navigates these challenges, experts recommend urgent investment in cybersecurity measures and resilient operations to combat such vulnerabilities. The Farm and Food Cybersecurity Act of 2025 is among legislative proposals aimed at improving preparedness within the industry. In light of this attack, retailers such as Whole Foods will need to critically assess their digital defenses and explore strategies to enhance supply chain resilience against the growing threat of cyber vulnerabilities.