Kraft Foods, a division of the food giant Kraft Heinz, has allegedly fallen victim to a cyberattack by the notorious Snatch Ransomware. The Kraft Heinz cyberattack, dating back to August, was only made public through a dark web channel typically used by threat actors to announce data breaches.
The company, known for producing some of the world’s most beloved food products, is yet to release an official statement, leaving the claims surrounding the Kraft Foods data breach unverified.
The Alleged Kraft Foods Cyberattack
The Cyber Express has reached out to the organization for more information regarding the Kraft Foods cyberattack. As of now, no official response has been received, leaving room for speculation and concern.
The threat actors responsible for the breach often use this dark web channel to announce and discuss their illicit activities, heightening the severity of the situation.
Earlier this year, Aetna filed a lawsuit against Kraft Heinz, accusing the company of mishandling data and breaching fiduciary duties. The lawsuit alleges that Aetna took over US$1.3 billion from Kraft Heinz to pay providers. While it is too early to definitively link the current Kraft Foods data breach to the lawsuit, the timing raises questions about a possible connection between the two incidents.
Aetna’s Fiduciary Breach Allegations
The lawsuit, filed by an employee benefits group at Kraft Heinz, accuses Aetna of breaching fiduciary duties under the Employee Retirement Insurance Security Act (ERISA). Aetna, which has served as a third-party claims administrator for Kraft Heinz for approximately 16 years, is alleged to have engaged in fraudulent conduct, hindering Kraft Heinz’s efforts to investigate and understand Aetna’s actions.
Kraft Heinz is seeking reimbursement for losses tied to Aetna’s alleged fiduciary breach and any related profits. The company is also pursuing a preliminary injunction to compel Aetna to provide more complete claims data, shedding light on the extent of the alleged misconduct.
Who is the Snatch Ransomware Group?
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are actively involved in addressing the cyber threat. They have released a joint Cybersecurity Advisory (CSA) to disseminate known ransomware Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) associated with the Snatch ransomware variant.
Snatch threat actors have consistently evolved their tactics since mid-2021, targeting critical infrastructure sectors, including the Defense Industrial Base, Food and Agriculture, and Information Technology sectors.
Known for conducting ransomware operations involving data exfiltration and double extortion, Snatch threat actors pose a significant threat to organizations, demanding ransom and threatening to expose victims’ data if payment is not made.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.
