Kraft Heinz Co. food company investigating claims of cyberattack

Kraft Heinz Co., a major multinational food company, is investigating a possible cyberattack following claims by the Snatch ransomware gang that they stole data from the company.

The Snatch gang, known for targeting critical infrastructure sectors and operating since 2018, added Kraft Heinz to its dark web leaks site on December 14, alleging the attack occurred in August. Kraft Heinz is examining whether the incident involved a decommissioned marketing website, noting that their corporate network has not experienced issues.

The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) had previously issued a warning about Snatch, highlighting their double-extortion tactics of encrypting and stealing data. The gang is notorious for using ransomware-as-a-service, targeting various sectors, including defense, food, agriculture, and IT. Snatch's method often involves restarting devices in Safe Mode to exfiltrate information and encrypt files.

While the exact method of infiltration into Kraft Heinz's systems remains unclear, the company's internal systems are reportedly operating normally.

There has been a trend of cyberattacks on large food manufacturers in 2023, with companies like Sysco, Dole, Hershey, Mondelez, and Canada’s Maple Leaf Foods also experiencing data theft incidents.