Americold cold storage service reports data breach

Americold, a leader in cold storage and logistics, reported a data breach in which personal information of over 129,000 employees and their dependents was stolen during a malware attack in April, later attributed to Cactus ransomware.

The breach in April caused significant operational disruptions, leading Americold to shut down its IT network for containment and system rebuilding. This decision also prompted the company to advise its customers to cancel or reschedule all inbound and outbound deliveries, barring urgent shipments close to expiration.

On December 8, Americold informed 129,611 current and former employees and their dependents about the breach through notification letters. These letters disclosed that on April 26, attackers managed to extract data from the company's network. The investigation, concluded on November 8, 2023, revealed the extent of the information compromised, which included:

• names,
• addresses,
• Social Security numbers,
• driver's license/state ID numbers,
• passport numbers,
• financial account details,
• health insurance
• medical information related to employment.

No further details are disclosed about the attack. The company had previously experienced a cyberattack in November 2020, affecting its operations, communication systems, and order processes.