The US branch of the Brazilian meat processor company JBS has paid $11 million worth of bitcoin to cyber-criminals who breached its computer systems and held them for ransom, its chief executive has revealed.
“It was very painful to pay the criminals, but we did the right thing for our customers,” Andre Nogueira, the CEO of JBS USA Holdings Inc, told the Wall Street Journal on Wednesday. He added that the ransom payment was made after the majority of JBS plants had resumed operations.
The ransomware attack on JBS delayed meat shipments to wholesale customers across the US for several days and caused temporary shortages and a spike in prices. Paying the eight-figure ransom was done to shield JBS from further disruptions and limit the potential impact on farmers, restaurants and grocery stores, Nogueira said.
The Brazilian-owned JBS is the second-largest supplier of beef, chicken and pork in the US, processing about a fifth of the country’s entire meat supply.
JBS has hired cybersecurity experts to figure out how the hackers breached their systems at the end of May. Nogueira told the WSJ they were “confident” no customer, supplier or employee data was compromised in the attack. The FBI has attributed the breach to REvil, described as a criminal ransomware gang.ALSO ON RT.COMHackers attack world’s largest meat processor: Work disrupted in US & Canada, deliveries halted & thousands sent home in Australia
The wave of ransomware attacks on US industry came four months into Joe Biden’s presidential term. The hackers targeted oil and meat production – two industries already in the sights of Democrat policymakers as contributors to climate change.
Earlier in May, a ransomware attack resulted in the shutdown of the Colonial Pipeline, which supplies the southeastern US. As hundreds of gas stations ran out of fuel, Colonial paid $4.4 million worth of bitcoin in ransom.
On Tuesday, the US Department of Justice announced it was able to reclaim around $2.3 million worth of that bitcoin from a wallet in California. Just because the DOJ was able to recover the funds this time, Deputy Attorney General Lisa Monaco cautioned, doesn’t mean companies should pay ransom going forward. If they do, they ought to work with the FBI if they hope to get the money back.
In Colonial’s case, hackers were able to access the company computers using a legacy virtual private network accessible by only a handful of employees. Colonial executives told Congress that they had to shut down because their current employees did not know how to operate the pipeline manually.