Dutch food giant Ahold Delhaize on Thursday announced that data was stolen from its systems during a November 2024 cyberattack.
The incident occurred in early November, impacting Giant Food pharmacies and Hannaford supermarkets and knocking Hannaford’s ecommerce portal offline. The Ahold Delhaize-owned stores, however, remained open.
The websites of other Ahold Delhaize USA brands, including Food Lion, Giant Food, The Giant Company, and Stop & Shop, were mirroring an incident notice from Ahold Delhaize USA citing disruptions caused by a cybersecurity issue that forced the company to take systems offline.
All stores, business operations, and ecommerce services were restored to normal shortly after the attack was contained, the food giant said in a statement issued on April 17.
It also disclosed that the attackers likely exfiltrated certain files from some of its internal business systems during the attack.
“Our teams have been working diligently to determine what information may have been affected and we will notify affected individuals in accordance with our legal obligations. In addition, we have notified and updated law enforcement,” the company said.
Ahold Delhaize disclosed the data breach on the same day that the INC Ransom ransomware group added the company to its Tor-based leak site, claiming the theft of 6 Tb of data.
The threat actor has published screenshots of various documents, as well as copies of identification documents, as proof of compromise, threatening to publish the information shortly.
SecurityWeek has emailed Ahold Delhaize for a statement on INC Ransom’s claims and will update this article if a reply arrives.
Related: Ransomware Group Claims Hacking of Oregon Regulator After Data Breach Denial
Related: Kidney Dialysis Services Provider DaVita Hit by Ransomware
Related: State Bar of Texas Says Personal Information Stolen in Ransomware Attack
Related: Ransomware Group Takes Credit for National Presto Industries Attack