Avril, a prominent supermarket chain in Quebec, has recently fallen victim to a cyberattack that has caused significant disruptions to its operations. The attack, which occurred on the night of December 11-12, 2024, has led to slowdowns in multiple locations across the province. Customers experienced delays over the weekend of December 14-15, with long lines and a limited number of cash registers functioning. In some instances, employees had to manually enter product codes due to the system failures. Although all stores remain open, the disruption has been felt across the company’s operations.
In response to the attack, Avril’s executive vice-president, Serge Gauthier, confirmed that the company is working closely with cybersecurity experts to assess the full extent of the damage. While the attack has had moderate impacts, the supermarket chain is doing everything it can to restore normal operations as quickly as possible. A parallel operating network for checkouts is being established to reduce the impact on customers. However, some delays in the company’s transactional site are expected, affecting background operations such as order preparation and deliveries.
Despite the operational setbacks, Avril has assured customers and employees that no personal information has been compromised in the cyberattack. The company stated that it has no indication that sensitive data was disclosed during the breach. Nonetheless, Avril recognizes the increasing sophistication of cyber threats and is taking steps to improve its security measures. The attack serves as a reminder of the vulnerability of retail organizations to cybercrime, and Avril is committed to enhancing its cybersecurity to prevent future incidents.
The frequency of cyberattacks against large companies has risen in recent years, with other food industry giants like Sobeys and Maple Leaf Foods also falling victim to similar attacks. Avril’s experience highlights the urgent need for companies to continuously adapt their security practices in response to evolving threats. The company’s leadership is determined to strengthen its defenses to protect against future cyber incidents and maintain the trust of its customers and stakeholders.
Reference:
