The Schäfer dein Bäcker bakery chain, headquartered in Germany, suffered a ransomware attack on September 5, 2024, orchestrated by the Akira ransomware gang. Hackers gained access to the company’s IT systems, encrypted them, and claimed to have extracted sensitive data, including 14 gigabytes of employee personal information, financial records, and contractual agreements. Although the attackers claimed possession of this data, Schäfer dein Bäcker denied that any extracted information was in their control or at risk of public exposure.
Upon detecting the attack, the bakery chain swiftly shut down its systems to mitigate further damage and initiated emergency protocols. Collaborating closely with external cybersecurity specialists, the company managed to restore functionality using backups. The German data protection authority was promptly notified, and Schäfer dein Bäcker ensured that systems returned to normal operations shortly after the incident. This rapid response minimized disruption, allowing the company to resume daily operations.
The Akira ransomware group has since posted stolen data on the darknet, adding pressure to the bakery chain. The leaked information reportedly includes sensitive company and employee data, heightening concerns about potential misuse. Schäfer dein Bäcker has yet to confirm the specifics of the leaked data but remains under scrutiny for the incident’s implications on data security.
The attack has prompted Schäfer dein Bäcker to reinforce its cybersecurity measures and address potential vulnerabilities. The bakery chain continues to work with cybersecurity experts to analyze the extent of the breach and ensure the protection of its operations and data. Customers and employees have been directed to contact the company’s data protection team for further information regarding the incident.
Reference: