Major Ransomware Attack Disrupts Operations for Starbucks and Other Retail Giants

The ransomware incident has led to operational challenges for Starbucks, forcing manual management of schedules in approximately 11,000 stores, while Morrisons struggles with its fresh produce warehouse management system.

A significant ransomware attack against Blue Yonder, a leading provider of supply chain management software based in Arizona, has caused substantial service disruptions for several high-profile companies, including Starbucks and Morrisons, one of the UK's largest grocery store chains.

The incident was reported on November 26, 2024, when Blue Yonder acknowledged the cyberattack had severely impacted its managed services environment. Blue Yonder serves over 3,000 clients, offering A.I.-driven tools for business operations ranging from payroll to inventory management. After the attack, the company stated that it was working diligently with cybersecurity experts to rectify the situation, but still lacked a definitive timeline for service restoration.

The fallout from the attack has forced Starbucks employees to revert to using pen and paper for scheduling purposes, affecting nearly 11,000 stores in North America, while also complicating payroll operations. Starbucks' spokeswoman Jaci Anderson reassured that staff would be compensated for their hours, and customer service was largely unaffected by the incident.

Simultaneously, in the UK, Morrisons confirmed that the ransomware attack had impacted their warehouse management systems, particularly for perishable goods. Morrisons is among a number of retailers dependent on Blue Yonder's software, highlighting the wider implications of the attack on supply chains. Other affected retailers include Sainsbury's, another major grocery chain in the UK.

As the attack's repercussions continue to unfold, both Blue Yonder and the companies it serves face pressing challenges to resume normal operations and safeguard against future digital threats.