Ahold Delhaizе hit by cyberattack
Learn More
Ahold Delhaize USA experienced a cybersecurity incident affecting multiple aspects of their operations, including pharmacy services and e-commerce platforms.
Ahold Delhaize USA is the U.S. division of Ahold Delhaize, a Dutch multinational retail company that owns and operates grocery brands in various countries. In the U.S., it oversees well-known supermarket brands like Hannafords, Food Lion, Giant Food, and Stop & Shop.
After detecting the incident, Ahold Delhaize notified law enforcement, engaged external cybersecurity experts and launched an internal investigation. Stores remain open during the response to the incident.
Some systems have been taken offline as a protective measure. The incident has caused significant disruptions to their normal business operations, affecting:
- Pharmacy services
- E-commerce operations
- Hannaford's website unavailable
- Payment systems unable to process debit cards and gift cards at several locations
- Potential product delivery delays
The exact number of affected stores, systems, or individuals is not disclosed in the available information. The nature of the cybersecurity incident and whether data was compromised has not been disclosed.
Hannaford's website remains unavailable while Stop & Shop website remains functional. Stores continue operating with some limitations and the company is working to restock shelves.
Update - As of 17th of April 2025, Ahold Delhaize USA has officially confirmed that data was stolen from its systems during the cyberattack. The company, acknowledged that hackers exfiltrated files from "internal U.S. business systems in connection with the prior cybersecurity issue."
The INC ransomware gang has claimed responsibility for the attack, stating they stole approximately six terabytes of information from the retail giant.
The types of exposed data and number of affected individuals is still not disclosed.
Ahold Delhaize USA has indicated that its teams are "working diligently to determine what information may have been affected" while noting that the business impact was "mitigated by our cyber-defense capabilities and response protocols." The company stated that their investigation remains ongoing with assistance from external cybersecurity experts.
As of 26th of June 2025, Ahold Delhaize, reports that the incident compromised personal, financial, and health information of over 2.2 million individuals. The exposed data includes:
- names,
- contact information (e.g., postal and email address and telephone number),
- date of birth,
- government-issued identification numbers
- Social Security numbers,
- financial account information,
- medical records,
- workers' compensation details of current and former employees.
