Coca-Cola’s Fairlife Halts US Production After Ransomware Attack
Coca-Cola has temporarily suspended production at Fairlife facilities across the United States after a ransomware attack disrupted systems used by the fast-growing dairy business.
The beverage group disclosed on July 16 that an unauthorised third party had gained access to part of Fairlife’s technology environment, including production-related systems. Coca-Cola activated its incident-response and business-continuity procedures and brought in external cybersecurity specialists to investigate the breach.
Fairlife’s US production operations were halted while the company works to restore the affected systems. Coca-Cola did not provide a timetable for resuming manufacturing, saying the full scope, nature and impact of the incident had yet to be determined.
The company stressed that the cyberattack had not affected the quality or safety of Fairlife products already manufactured. Production operations in Canada were also continuing without disruption.
Law-enforcement authorities have been notified, while the investigation is continuing with support from outside advisers and security experts. Coca-Cola has not said whether information was stolen, whether the attackers issued a ransom demand or which cybercrime group was responsible.
No ransomware organisation had publicly claimed responsibility for the attack at the time of the disclosure. Coca-Cola also declined to provide further details beyond its official statement when questioned about possible data theft or extortion.
Fairlife produces ultra-filtered milk, nutrition drinks and high-protein beverages, including the Core Power and Nutrition Plan ranges. The business has become an increasingly important part of Coca-Cola’s expansion beyond carbonated soft drinks and into value-added dairy products.
The shutdown raises the possibility of supply disruption if the restoration process extends for a prolonged period, although Coca-Cola has not yet indicated whether retailers or consumers are likely to face shortages.
Ransomware incidents can be particularly damaging to manufacturing companies because attacks may affect not only corporate computers but also scheduling, logistics, quality-control and production systems required to operate factories safely.
Coca-Cola said it was working to complete the investigation and restore affected systems and operations. The company has not yet determined whether the event is likely to have a material effect on its financial performance.
The incident is the latest example of cybercriminals targeting food and beverage producers, where even a temporary interruption can affect factories, distribution networks and product availability across large markets.
