The White House on Tuesday said a breach at JBS, the world’s largest meat processor, was a ransomware attack, as some of the company’s plants were partially or completely closed. all after that.
“Meat producer JBS informed us on Sunday that they were the victim of a ransomware attack,” Karine Jean-Pierre, deputy press secretary, told reporters on the Air. force One on Tuesday. Jean-Pierre said that the Federal Bureau of Investigation was investigating the hack and that the Cybersecurity and Infrastructure Agency was also involved.
Operations at most of JBS’s plants have been affected, according to Facebook posts for employees. About 25 factories in the United States and Canada posted on Facebook that they were canceling shifts scheduled for Monday, with some of them citing “server issues”. Many of the company’s poultry plants began bringing back workers on Tuesday, but at least three of the company’s 11 beef plants remained closed, according to the reports.
“I can confirm that the attack affected the plant in Brooks and about 2,500 union workers are employed there,” said Scott Payne, a spokesman for United Food and Commercial worker Local 401 in Canada. to a beef plant in Alberta. “All shifts yesterday were cancelled. This morning’s shift has been cancelled. But the afternoon shift has been rescheduled for today.”
JBS only said that it was the target of an “organized cyberattack” affecting systems in North America and Australia, and it did not expect that any customer, supplier or affected level or staff. JBS could not be reached immediately for comment. Jean-Pierre said that JBS informed the Biden administration that the ransom demand came from “a criminal organization that may be based in Russia”.
“The White House is engaging directly with the Russian government on this and sending the message that responsible countries do not harbor ransomware criminals,” she said.
In two weeks, President Biden is scheduled to meet with Russian President Vladimir V. Putin in Geneva for a summit during which a series of cyberattacks, mainly emanating from Russia, have lay on the American agenda. A recent breach used software called SolarWinds to infiltrate 250 federal agencies and businesses. This is considered the most damaging attack because it raises questions about whether the United States can trust its software supply chain.
In May, many parts of the country experienced gas shortages after a ransomware attack on the Colonial Pipeline sent some shoppers into panic.
SolarWinds, the United States said, is the work of SVR – one of Russia’s top intelligence agencies. The Colonial Pipeline attack appears to be the work of a ransomware group, which Mr. Biden said is based in Russia. The culprit behind the JBS attack has yet to be publicly identified.
David E. Sanger, Noam Scheiber and Julie Creswell contribution report.