Cyberattacks on beverage manufacturers increase risk awareness

The global beverage industry faces a growing threat from cyberattacks. Renowned companies such as Arizona Beverages, Coca-Cola FEMSA, Molson Coors, and Damm have experienced corresponding attacks in recent years, causing significant operational disruptions. For instance, a ransomware attack at Arizona Beverages led to the complete shutdown of their sales department for several days. Molson Coors and Damm were forced to halt production due to unspecified cyber incidents. These incidents are not isolated cases but merely the publicly known ones. According to data from cybersecurity firm Armis, the number of cyberattacks worldwide increased by 104% in 2023, with the manufacturing industry being particularly vulnerable with a 165% rise in attacks. Experts emphasize that cybercriminals are becoming increasingly sophisticated in their methods, seeking vulnerabilities in companies' supply chains. The digitization and smart technologies in production processes and supply chains, in particular, are creating new attack surfaces. According to Kristin Demoranville, CEO of cybersecurity consultancy AnzenSage, these systems are now cyber-physical and must be protected both digitally and physically. The beverage industry, due to its high level of automation and its importance as critical infrastructure, is becoming an increasing target for both cybercriminals and state actors. The war in Ukraine has shown that attacks on the food and beverage industry are used to disrupt supply chains and create instability. Another risk factor is the just-in-time logistics of the industry, which holds no extensive inventory and is thereby highly susceptible to production disruptions. According to Demoranville, this results in successful attacks causing significant financial losses and creating incentives for the rapid payment of ransoms. Experts such as Carlos Buenano of Armis highlight the necessity of securing the entire supply chain of beverage companies. Vulnerabilities such as unsupported, unpatched, and poorly configured systems significantly increase the risk. Regular audits and stringent cybersecurity standards are therefore essential. Strategies such as network segmentation and a "Zero Trust" model are recommended as effective measures to protect against cyberattacks. These approaches enable precise control over how systems communicate and help isolate attacks. The cybersecurity awareness of the beverage industry must be strengthened to avert future threats. A significant example of this is the cyberattack on the Crimson Wine Group, which led to massive data loss and crippled the company’s systems. Recent data shows that in the first quarter of this year alone, seven ransomware attacks on food and beverage companies were documented. These ongoing threats highlight that the beverage industry must take its cybersecurity investments seriously. Given the rising numbers of cybercrimes, experts advise robust protective measures to secure corporate infrastructures and minimize operational disruptions.