United Natural Foods Suffers Cyberattack

Major grocery distributor takes systems offline following security breach, disrupting supply chain operations. United Natural Foods, Inc. (UNFI), one of North America’s largest wholesale food distributors, is grappling with a significant cyberattack that has forced the company to halt critical operations and take systems offline.

The Providence, Rhode Island-based company discovered unauthorized activity on its information technology systems on June 5, 2025, prompting immediate containment measures that continue to disrupt business operations.

The cyberattack has severely impacted UNFI’s ability to fulfill and distribute customer orders, creating ripple effects throughout the grocery supply chain. As the primary distributor for Whole Foods Market and a key supplier to approximately 30,000 retail locations across the United States and Canada, the disruption threatens to affect grocery stores nationwide.

“We have identified unauthorized activity in our systems and have proactively taken some systems offline while we investigate,” the company stated in an official release.

UNFI immediately activated its incident response plan and brought in leading forensics experts to assess the breach while notifying law enforcement authorities.

System Operation Halted

The attack has forced UNFI to implement emergency workarounds to maintain limited operations where possible. Despite these efforts, the company acknowledges that disruptions are expected to continue as the investigation progresses.

Early reports from Reddit users suggest some Whole Foods locations are experiencing empty shelves, with UNFI drivers being told not to report to work.

UNFI’s extensive distribution network, which includes 58 distribution centers with 31 million square feet of warehouse space, serves as a critical link in the North American food supply chain.

The company offers approximately 250,000 products from over 11,000 suppliers, making the operational disruption particularly significant for the grocery industry.

The investigation into the breach remains in its early stages, with UNFI working alongside third-party cybersecurity professionals to assess the full scope and impact of the incident.

The company has not disclosed whether this constitutes a ransomware attack, though the decision to proactively shut down systems suggests a serious security threat.

“As we work through this issue, our customers, suppliers, and associates are our highest priority,” UNFI emphasized, pledging to minimize disruption while safely restoring systems. The company continues working to bring operations back online while maintaining security protocols throughout the recovery process.

Looking for AI-Powered Nex-Gen malware protection? – Download Malware Protection Plus for Free