Cyberattack Incident Resolved, UNFI Resumes Normal Business Operations
United Natural Foods Inc. (UNFI) Contains Cyber Incident, Continues Operations
United Natural Foods Inc. (UNFI), one of the largest publicly traded wholesale distributors of health and specialty food in North America, has announced that its recent cyberincident is now contained. The company, which operates more than 50 distribution centers and delivers to over 30,000 locations across the United States and Canada, has restored its core systems used by retail customers and suppliers for business.
The cyberattack, which became apparent on June 5, did not involve a breach of security of personal information or protected health information. UNFI's electronic ordering and invoicing systems are now back online. However, the company expects to incur direct expenses related to the investigation and remediation of the incident.
Despite the setback, UNFI has continued its operations, delivering products to its grocery store customers across North America, including Whole Foods Market locations. The company's net sales in the most recent quarter ended May 3 increased by 7.5% to $8.1 billion, primarily driven by a 4% increase in wholesale unit volumes.
In the wake of the incident, UNFI's position underscores the importance of cybersecurity for food retailers. To better protect themselves from such threats, retailers can adopt a multi-layered cyber resilience strategy. This strategy should focus on technology, people, and operational models.
Key steps include decentralization of operations, technology modernization, employee training and human-centric defenses, strict access controls, proactive monitoring and rapid incident response, business continuity and communication plans, collaborations and best practices.
By integrating cybersecurity into their core operations through technological upgrades, decentralization, employee empowerment, and continuous vigilance, retailers can both prevent and quickly recover from cyberattacks.
UNFI, currently No. 20 on The PG 100, Progressive Grocer's 2025 list of the top food and consumables retailers in North America, has faced challenges in the weeks following the incident, experiencing reduced sales volume and increased operational costs. However, the company's resilience and swift response have enabled it to continue serving its customers and maintaining its position in the industry.
[1] Source: Food Dive [2] Source: Progressive Grocer [3] Source: Cybersecurity Dive [4] Source: Grocery Dive [5] Source: Forbes
- Incorporating cybersecurity into their core operations, retailers such as UNFI can leverage technological upgrades, decentralization, employee empowerment, and continuous vigilance to both prevent and recover quickly from potential cyberattacks in the finance and technology sectors of the industry.
- To ensure the security of their business operations and protect against threats like the one experienced by UNFI, food retailers should consider adopting a multi-layered cyber resilience strategy, encompassing technology, people, and operational models, as recommended by industry experts.
