Scarinci Hollenbeck, LLC, LLCScarinci Hollenbeck, LLC, LLC

Firm Insights

What Can the Food and Beverage Industry Learn from the Molson Coors Cyberattack?

Author: Scarinci Hollenbeck, LLC

Date: March 31, 2021

Key Contacts

Back
What Can the Food and Beverage Industry Can Learn from the Molson Coors Cyberattack?

Molson Coors Beverage Company (Molson Coors) recently disclosed that it suffered a cyberattack that forced its beer production to come to a screeching halt...

Molson Coors Beverage Company (Molson Coors) recently disclosed that it suffered a cyberattack that forced its beer production to come to a screeching halt. The incident highlights why robust cybersecurity is so important in the food and beverage industry.

Molson Coors Cyberattack Results in Systems Outage

Molson Coors disclosed the cyberattack in a filing with the US Securities and Exchange Commission (SEC). According to the 8-K filing, the incident, which caused a “systems outage,” occurred on March 11, 2021. In the wake of the cyberattack, Molson Coors “engaged leading forensic information technology firms and legal counsel to assist the Company’s investigation into the incident,” the filing stated.

“The company is working around the clock to get its systems back up as quickly as possible,” the company said in its filing. “Although the company is actively managing this cybersecurity incident, it has caused and may continue to cause a delay or disruption to parts of the company’s business, including its brewery operations, production and shipments.”

Food and Beverage Industry Has Unique Cyber Risks

As we have discussed in prior articles, cybercrime has increased dramatically during the COVID-19 pandemic, impacting businesses in all sectors. The food and beverage industry is no exception—Brown-Forman, which owns Jack Daniel’s; Lion, an Australian alcoholic beverage company; and Italy’s Licya Campari Group all fell victim in the past year.

Ransomware attacks are becoming increasingly common in the food and beverage industry as cybercriminals discover they can score large paydays by disrupting the critical business operations of large industrial companies. While Molson Coors has not yet disclosed the nature of its cyber incident, many security experts suspect it fell victim to ransomware.

According to a recent report by Claroty, an industrial cybersecurity company, the food and agriculture sector experienced a fifty-six percent (56%) increase in industrial control system (ICS) vulnerabilities from 2019 to 2020. “Given the round-the-clock nature of operations in food and beverage companies, much of the IT equipment in manufacturing plants can’t be patched frequently, making these assets a prime target for attacks such as ransomware, which can seize up operations abruptly with a dramatic cost to the enterprise,” Grant Geyer, Claroty’s Chief Product Officer, told Industry Week.

As cyber risks increase, continuous threat monitoring of all IT systems is essential. Businesses should also ensure that operating systems, software, and firmware are patched as soon as manufacturers release updates. Employees can also play a critical role in combatting cyberattacks, often thwarting an attack before it takes down your systems. However, as ransomware attacks become more sophisticated, workers need to be trained on the latest threats. For instance, while ransomware attacks initially relied on email messages that were clearly identifiable as spam, hackers are now using phishing schemes that make emails appear to come from a known contact.

With prevention as the goal, businesses should also plan for an inevitable attack. Because it can take time to recover from a cyberattack and restore normal operations, it’s important to plan for the possibility of critical information systems being inaccessible for an extended period of time. Creating, maintaining, and exercising a basic cyber incident response plan can help businesses recover more quickly, as everyone involved knows their role and can immediately start to “work the plan” to regain normal business operations.

Business continuity plans are also invaluable. While many plans address how to continue critical business operations in the face of a flood, power disruption, or other disaster, cyberattacks are not always addressed. A good starting point is to determine all the potential threats to your business operations posed by a cyberattack, rank the severity of each business disruption, and devise a plan to address each risk.

Key Takeaway

As Molson Coors learned the hard way, a cyberattack can significantly disrupt production and distribution. Since it is not always possible to thwart an attack, it is essential to have policies and procedures in place to get systems back up and running as quickly as possible. Food and beverage companies should use this latest incident as motivation to thoroughly review their cybersecurity and business continuity plans to ensure they address current and emerging risks.

If you have questions, please contact us

If you have any questions or if you would like to discuss the matter further, please contact me, Corey LaBrutto, or the Scarinci Hollenbeck attorney with whom you work, at 201-896-4100.

No Aspect of the advertisement has been approved by the Supreme Court. Results may vary depending on your particular facts and legal circumstances.

Scarinci Hollenbeck, LLC, LLC

Related Posts

See all
Corporate Transactions: Best Practices for Successful Deals post image

Corporate Transactions: Best Practices for Successful Deals

Corporate transactions can have significant implications for a corporation and its stakeholders. For deals to be successful, companies must act strategically to maximize value and minimize risk. It is also important to fully understand the legal and financial ramifications of corporate transactions, both in the near and long term. Understanding Corporate Transactions The term “corporate […]

Author: Dan Brecher

Link to post with title - "Corporate Transactions: Best Practices for Successful Deals"
How to Conduct a Fair and Legal Employee Termination in 2025 post image

How to Conduct a Fair and Legal Employee Termination in 2025

Ongoing economic uncertainty is forcing many companies to make tough decisions, which includes lowering staff levels. The legal landscape on both the state and federal level also continues to evolve, especially with significant changes to the priorities of the Equal Employment Opportunity Commission (“EEOC”) under the Trump Administration. Terminating an employee is one of the […]

Author: Angela A. Turiano

Link to post with title - "How to Conduct a Fair and Legal Employee Termination in 2025"
Admin Dissolution for Annual Report: What You Need to Know post image

Admin Dissolution for Annual Report: What You Need to Know

While filing annual reports may seem like a nuisance, failing to do so can have significant ramifications. These include fines, reputational harm, and interruption of your business operations. In basic terms, “admin dissolution for annual report” means that a company is dissolved by the government. This happens because it failed to submit its annual report […]

Author: Dan Brecher

Link to post with title - "Admin Dissolution for Annual Report: What You Need to Know"
What Is Antitrust Litigation Law? post image

What Is Antitrust Litigation Law?

Antitrust laws are designed to ensure that businesses compete fairly. There are three federal antitrust laws that businesses must navigate. These include the Sherman Act, the Federal Trade Commission Act, and the Clayton Act. States also have their own antitrust regimes. These may vary from federal regulations. Understanding antitrust litigation helps businesses navigate these complex […]

Author: Robert E. Levy

Link to post with title - "What Is Antitrust Litigation Law?"
Dissolving Your Business: Essential Legal Steps to Protect Your Interests post image

Dissolving Your Business: Essential Legal Steps to Protect Your Interests

If you’re considering closing your business, it’s crucial to understand that simply shutting your doors does not end your legal obligations. Unless you formally dissolve your business, it continues to exist in the eyes of the law—leaving you exposed to ongoing liabilities such as taxes, compliance violations, and potential lawsuits. Dissolving a business can seem […]

Author: Christopher D. Warren

Link to post with title - "Dissolving Your Business: Essential Legal Steps to Protect Your Interests"
The Role of Corporate Restructuring in Mergers & Acquisitions post image

The Role of Corporate Restructuring in Mergers & Acquisitions

Contrary to what many people think, corporate restructuring isn’t all doom and gloom. Revamping a company’s organizational structure, corporate hierarchy, or operations procedures can help keep your business competitive. This is particularly true during challenging times. Corporate restructuring plays a critical role in modern business strategy. It helps companies adapt quickly to market changes. Following […]

Author: Dan Brecher

Link to post with title - "The Role of Corporate Restructuring in Mergers & Acquisitions"

No Aspect of the advertisement has been approved by the Supreme Court. Results may vary depending on your particular facts and legal circumstances.

Sign up to get the latest from our attorneys!

Explore What Matters Most to You.

Consider subscribing to our Firm Insights mailing list by clicking the button below so you can keep up to date with the firm`s latest articles covering various legal topics.

Stay informed and inspired with the latest updates, insights, and events from Scarinci Hollenbeck. Our resource library provides valuable content across a range of categories to keep you connected and ahead of the curve.

Let`s get in touch!

* The use of the Internet or this form for communication with the firm or any individual member of the firm does not establish an attorney-client relationship. Confidential or time-sensitive information should not be sent through this form.

Sign up to get the latest from the Scarinci Hollenbeck, LLC attorneys!