Ahold Delhaize USA, the parent company of popular American supermarket brands like Stop & Shop, Food Lion, Giant Food, and Hannaford, has recently confirmed that data was stolen during a cyberattack in the fall of 2024. The company provided an update on Thursday, disclosing that hackers were able to extract files from internal business systems related to the previous security breach.
The cyberattack, which caused disruptions in online grocery ordering and temporary website outages for some supermarket chains in November 2024, prompted Ahold Delhaize USA to swiftly restore its operations. The company stated that its teams have been diligently investigating to determine the extent of the information that may have been compromised.
In a recent development, it has been revealed that certain files were taken from internal U.S. business systems in connection with the cybersecurity incident. While the specific nature of the data that was stolen has not been disclosed, the company assured that efforts are being made to identify the affected information. Ahold Delhaize USA has pledged to notify individuals affected by the breach in accordance with legal requirements, and law enforcement agencies have been briefed on the situation.
The cybercriminal group known as INC Ransom has claimed responsibility for the cyberattack on Ahold Delhaize USA, boasting about stealing six terabytes of data from the company. INC Ransom, also recognized by the alias GOLD IONIC, is a well-known ransomware and extortion group that has been active since at least July 2023. The group is notorious for utilizing advanced attack methods, including tools like AdFind, PsExec, and Rclone, to infiltrate systems and extract data across various industries globally.
INC Ransom’s previous targets include ControlNET LLC, a provider of building technology solutions, where they not only gained access to the company’s network but also released sensitive information, such as invoice records, building floor plans, and internal email communications. The group’s activities pose a significant risk not only to the targeted companies but also to their clients and partners, as evidenced by their alleged targeting of Rockford Public Schools in the same attack vector.
The implications of cyberattacks like the one on Ahold Delhaize USA are far-reaching, affecting both businesses and consumers. The stolen data could potentially include sensitive personal information, putting individuals at risk of identity theft and other malicious activities. As such, affected customers are advised to monitor their accounts for unusual activity, be cautious of phishing scams, and update their passwords for online accounts related to grocery shopping.
As ransomware groups like INC Ransom continue to evolve and target organizations worldwide, cybersecurity measures must be prioritized at all levels to mitigate the risks associated with such attacks. Companies like Ahold Delhaize USA must remain vigilant and proactive in safeguarding their systems and data to prevent further breaches and uphold the trust of their customers and partners.