The largest meat producer in the world believes that the cyberattack against it came from a Russian criminal group.


The White House also pointed to Russia as responsible for the attack on the JBS company. The FBI is investigating the incident. The Agency for Cybersecurity and Infrastructure Security is coordinating to offer technical support to the company.

JBS, the world's largest meat producer, shut down its plants in the United States, Canada and Australia over cyberattacks, with the White House assuring that it may be from a Russian-based criminal organization.

However, the company assured on Tuesday that the "vast majority" of its plants would be operational by Wednesday.

 Our systems are coming back online, and we're leaving no stone unturned to address this threat," said Andre Nogueira, the head of the US affiliate who was attacked by hackers.

The affiliate was sued by "a criminal organization probably based in Russia" after an attack that affected its operations in Australia and North America, a White House spokeswoman Karine Jean-Pierre explained Tuesday.

The White House statement comes less than a month after another large ransom-demand cyberattack temporarily shut down the pipeline operator Colonial Pipeline network, which supplies about 45% of the fuel used on the East Coast of the United States.

Jean-Pierre noted that the Joe Biden government offered assistance to JBS and that the Department of Agriculture has spoken several times with company leaders.

The spokesman said the White House was in direct contact with the Russian government on the issue and sent a message that responsible states do not harbor "ransom" perpetrators.

Ransomware is a scheme that takes advantage of security flaws in a computer system to block it and then demand a ransom to restart it.

JBS, a Brazilian-based multinational specialized in beef, chicken, and pork-based products, is one of the largest agri-food companies in the world, with operations in the United States, Australia, Canada, Europe, Mexico, New Zealand, and the United Kingdom.

The company said in a statement Monday that JBS America was determined to be the target of a systematic cybersecurity attack that affected Northern Server and some servers supporting its computer systems in Australia.

JBS said its backup servers were not affected by the incident. However, the statement did not provide details about the status of the plants.

According to the union's representative in Australia, the attack paralyzed JBS operations, and up to 10,000 workers were sent home without pay.

This has an impact on JBS processing plants (in Australia), Queensland Union Secretary Matt Journeaux told AFP. He added that he had removed workers from all JBS activities.

Several JBS plants were also affected in North America.

In the United States, a plant in Wisconsin says production will stop on Monday. Another plant in Utah was out of order. In Iowa, one plant was left idle with four departments, while the rest of the units are operating normally.

The United Food and Commercial Workers union, representing workers in Colorado and Wyoming, said the "slaughterhouse" and "manufacturing" shifts were canceled Monday.

The Canada division of JBS canceled some operations on Monday and early Tuesday. However, she later hinted on Facebook that she would resume production in general.

Colonial Pipeline's shut down for several days in May triggered panic buying in some US states, ending when the company paid hackers $ 4.4 million to unlock its systems, the firm acknowledged.

The US authorities accused DarkSide, a group of cybercriminals allegedly based in Russia, of the attack, which Moscow denies.

Colonial Pipeline's computer vulnerabilities led the Biden government to impose cybersecurity requirements on pipelines for the first time last week.

The JBS and Colonial Pipeline incidents are following Cybertech in 2020 on Solar Winds, a software company affiliated with a Russian state-backed group.

Last week, Microsoft warned that the group behind the cyber attack on SolarWinds had resurfaced with a series of attacks on government agencies, think tanks, consultancies, and other organizations.

In a statement Thursday, the head of the U.S. Department of Homeland Security (DHS), Alejandro Mayorkas, said the cybersecurity scenario is constantly evolving, and we need to adapt to new and emerging threats.