KP Snacks latest victim of ransomware attack

KP Snacks has been hit by a ransomware attack which may lead to a shortage of several popular crisp and nuts brands.

Popular snacks from the UK company include Skips, Nik Naks, Hula Hoops, McCoy’s crisps and the classic pub snacks, KP Nuts themselves, considered by many to be a core component of any drinking experience.

According to messages sent to local shops and published by industry news outlet Better Retailing, deliveries could face delays and cancellations up until “the end of March at the earliest”.

“At this stage we cannot safely process orders or dispatch goods,” the letter from KP Snacks explained.

A company spokesperson confirmed that KP discovered a ransomware attack on Friday 28 January.

The warning message, sent out through groceries wholesaler Nisa, said KP Snacks was going to limit the size of orders to retailers so it could “manage what stock we do have”.

KP Snacks’ statement to said: “As soon as we became aware of the incident, we enacted our cybersecurity response plan and engaged a leading forensic information technology firm and legal counsel to assist us in our investigation.

Commenting on the attack, Andy Norton, European cyber risk officer at cyber security specialist Armis said: “Everyone at KP Snacks must be jumping through Hula Hoops to get production flowing again.”

“The IT ecosystem that surrounds OT and ICS technology is often the weak link in operational resilience, we’ve seen this many times in recent history. When cyber-attacks like this have such an impact to production it is often through incorrect risk assessment and not fully understanding the criticality of ancillary systems.”

Follow us on twitter: @risksEmerging

Twitter feed is not available at the moment.