因供應(yīng)商遭黑客攻擊,星巴克使用手寫(xiě)方式記錄薪資
Curtis Heinzl與Bloomberg
2024-11-27
Photo by Beata Zawrzel/NurPhoto via Getty Images
星巴克公司(Starbucks Corp.)表示,,其第三方軟件供應(yīng)商遭遇勒索軟件攻擊,,導(dǎo)致用于記錄員工排班的系統(tǒng)中斷,迫使這家咖啡巨頭改用手工統(tǒng)計(jì)員工工作時(shí)間和薪資,。
Blue Yonder集團(tuán)是松下(Panasonic)旗下子公司,,提供供應(yīng)鏈管理軟件。該公司表示,,其系統(tǒng)在11月21日受到勒索軟件攻擊,。星巴克發(fā)言人稱(chēng),星巴克是Blue Yonder的客戶(hù),,使用Blue Yonder的軟件在北美地區(qū)排班并記錄零售員工的工作時(shí)間,。
星巴克發(fā)言人補(bǔ)充道,目前門(mén)店已改用手寫(xiě)等手動(dòng)方式進(jìn)行員工排班,。但此次事件未對(duì)門(mén)店的運(yùn)營(yíng)或營(yíng)業(yè)時(shí)間造成影響,。Blue Yonder軟件的漏洞主要影響了美國(guó)和加拿大的直營(yíng)門(mén)店。
在彭博社看到的發(fā)給員工的消息中,,星巴克表示,,Blue Yonder尚未提供系統(tǒng)修復(fù)的時(shí)間表。為了確保員工能夠在11月29日按時(shí)領(lǐng)取薪資,,公司將根據(jù)11月18日所在周的排班表進(jìn)行支付。這可能與實(shí)際工作時(shí)間有所不同,,因?yàn)閱T工可能在此期間加班,、休假或請(qǐng)病假,而這些變動(dòng)未能錄入系統(tǒng),。
星巴克在給員工的最新消息中表示:“我們希望此次系統(tǒng)中斷不會(huì)影響未來(lái)幾周的薪資發(fā)放,。然而,如果問(wèn)題持續(xù)存在,,我們將繼續(xù)尋找優(yōu)化薪資準(zhǔn)確性和支付流程的解決方案,。”
在另一份通知中,,星巴克向門(mén)店經(jīng)理分享了一份模板,,用于制定12月9日所在周的排班表。通常情況下,,公司會(huì)提前三周制定排班計(jì)劃,。
勒索軟件事件
Blue Yonder在周一的一份聲明中表示,已通知相關(guān)客戶(hù)此次事件,,并將“繼續(xù)酌情進(jìn)行溝通,。”
公司發(fā)言人瑪麗娜·雷內(nèi)克表示,,“Blue Yonder的托管服務(wù)環(huán)境遭遇中斷,,原因已確定為一起勒索軟件攻擊,。自事件發(fā)生以來(lái),Blue Yonder團(tuán)隊(duì)一直與外部網(wǎng)絡(luò)安全公司緊密合作,,全力推進(jìn)恢復(fù)進(jìn)程,。目前,我們已實(shí)施多項(xiàng)防御和取證協(xié)議,?!?/p>
CNN此前已對(duì)該勒索軟件攻擊事件進(jìn)行了報(bào)道,稱(chēng)一些英國(guó)的連鎖超市已采取措施應(yīng)對(duì)此次事件,。
周一,,英國(guó)連鎖超市莫里森(Morrisons)的代表對(duì)彭博社表示,Blue Yonder軟件的漏洞影響了其倉(cāng)庫(kù)管理系統(tǒng),,但門(mén)店目前已通過(guò)備份系統(tǒng)實(shí)現(xiàn)“滿(mǎn)意的”運(yùn)營(yíng)狀態(tài),。另一家超市森斯伯瑞超市集團(tuán)公司(Sainsbury’s)確認(rèn)其使用Blue Yonder的軟件,,但表示由于擁有備份解決方案,公司未受此次事件影響。而阿斯達(dá)超市(Asda)的發(fā)言人則稱(chēng),,雖然公司使用Blue Yonder的軟件,但此次事件并未對(duì)其運(yùn)營(yíng)產(chǎn)生任何影響,。
根據(jù)Blue Yonder官網(wǎng)顯示,,公司總部位于美國(guó)亞利桑那州斯科茨代爾,其客戶(hù)涵蓋制造業(yè),、超市,、第三方物流、汽車(chē)及餐飲行業(yè)等多個(gè)領(lǐng)域,。(財(cái)富中文網(wǎng))
翻譯:劉進(jìn)龍
審校:汪皓
星巴克公司(Starbucks Corp.)表示,,其第三方軟件供應(yīng)商遭遇勒索軟件攻擊,導(dǎo)致用于記錄員工排班的系統(tǒng)中斷,,迫使這家咖啡巨頭改用手工統(tǒng)計(jì)員工工作時(shí)間和薪資,。
Blue Yonder集團(tuán)是松下(Panasonic)旗下子公司,提供供應(yīng)鏈管理軟件,。該公司表示,,其系統(tǒng)在11月21日受到勒索軟件攻擊。星巴克發(fā)言人稱(chēng),,星巴克是Blue Yonder的客戶(hù),,使用Blue Yonder的軟件在北美地區(qū)排班并記錄零售員工的工作時(shí)間。
星巴克發(fā)言人補(bǔ)充道,,目前門(mén)店已改用手寫(xiě)等手動(dòng)方式進(jìn)行員工排班,。但此次事件未對(duì)門(mén)店的運(yùn)營(yíng)或營(yíng)業(yè)時(shí)間造成影響。Blue Yonder軟件的漏洞主要影響了美國(guó)和加拿大的直營(yíng)門(mén)店。
在彭博社看到的發(fā)給員工的消息中,,星巴克表示,,Blue Yonder尚未提供系統(tǒng)修復(fù)的時(shí)間表。為了確保員工能夠在11月29日按時(shí)領(lǐng)取薪資,,公司將根據(jù)11月18日所在周的排班表進(jìn)行支付,。這可能與實(shí)際工作時(shí)間有所不同,因?yàn)閱T工可能在此期間加班,、休假或請(qǐng)病假,,而這些變動(dòng)未能錄入系統(tǒng)。
星巴克在給員工的最新消息中表示:“我們希望此次系統(tǒng)中斷不會(huì)影響未來(lái)幾周的薪資發(fā)放,。然而,,如果問(wèn)題持續(xù)存在,我們將繼續(xù)尋找優(yōu)化薪資準(zhǔn)確性和支付流程的解決方案,?!?/p>
在另一份通知中,星巴克向門(mén)店經(jīng)理分享了一份模板,,用于制定12月9日所在周的排班表,。通常情況下,公司會(huì)提前三周制定排班計(jì)劃,。
勒索軟件事件
Blue Yonder在周一的一份聲明中表示,,已通知相關(guān)客戶(hù)此次事件,并將“繼續(xù)酌情進(jìn)行溝通,?!?/p>
公司發(fā)言人瑪麗娜·雷內(nèi)克表示,“Blue Yonder的托管服務(wù)環(huán)境遭遇中斷,,原因已確定為一起勒索軟件攻擊。自事件發(fā)生以來(lái),,Blue Yonder團(tuán)隊(duì)一直與外部網(wǎng)絡(luò)安全公司緊密合作,,全力推進(jìn)恢復(fù)進(jìn)程。目前,,我們已實(shí)施多項(xiàng)防御和取證協(xié)議,。”
CNN此前已對(duì)該勒索軟件攻擊事件進(jìn)行了報(bào)道,,稱(chēng)一些英國(guó)的連鎖超市已采取措施應(yīng)對(duì)此次事件,。
周一,英國(guó)連鎖超市莫里森(Morrisons)的代表對(duì)彭博社表示,,Blue Yonder軟件的漏洞影響了其倉(cāng)庫(kù)管理系統(tǒng),,但門(mén)店目前已通過(guò)備份系統(tǒng)實(shí)現(xiàn)“滿(mǎn)意的”運(yùn)營(yíng)狀態(tài)。另一家超市森斯伯瑞超市集團(tuán)公司(Sainsbury’s)確認(rèn)其使用Blue Yonder的軟件,,但表示由于擁有備份解決方案,,公司未受此次事件影響,。而阿斯達(dá)超市(Asda)的發(fā)言人則稱(chēng),雖然公司使用Blue Yonder的軟件,,但此次事件并未對(duì)其運(yùn)營(yíng)產(chǎn)生任何影響,。
根據(jù)Blue Yonder官網(wǎng)顯示,公司總部位于美國(guó)亞利桑那州斯科茨代爾,,其客戶(hù)涵蓋制造業(yè),、超市、第三方物流,、汽車(chē)及餐飲行業(yè)等多個(gè)領(lǐng)域,。(財(cái)富中文網(wǎng))
翻譯:劉進(jìn)龍
審校:汪皓
Starbucks Corp. said a ransomware attack at a third-party software supplier has disrupted its system for tracking employee schedules, forcing the coffee giant to manually tally workers’ hours and pay.
Blue Yonder Group Inc., a Panasonic subsidiary that provides supply chain management software, said its systems were disrupted by a Nov. 21 “ransomware incident.” Starbucks is among its customers and uses Blue Yonder software to schedule shifts and track retail workers’ hours in North America, a company spokesperson said.
Starbucks’ stores are resorting to manual methods such as pen and paper for employee scheduling, the spokesperson said, adding that the incident hasn’t impacted store operations or hours. The Blue Yonder breach is affecting company-operated stores in the US and Canada.
In a message to workers seen by Bloomberg News, Starbucks said that Blue Yonder hasn’t provided a timeline for when the issue may be resolved. To ensure workers get paid on Nov. 29, they’ll get compensated for scheduled shifts for the week of Nov. 18. That might differ from actual hours worked, since staffers might have picked up extra shifts or taken vacation or sick time that wasn’t entered into the system.
“We are hopeful this outage will not extend to impact payroll processing for future weeks,” the company said in the update to workers. “However, we are continuing to look for ways to improve pay accuracy and processing should the outage continue.”
In another message, Starbucks shared a template to help managers build schedules for the week of Dec. 9. The company usually creates schedules three weeks in advance.
Ransomware Incident
In a statement Monday, Blue Yonder said it had notified relevant customers about the incident and “will continue to communicate as appropriate.”
“Blue Yonder experienced disruptions to its managed services hosted environment, which was determined to be the result of a ransomware incident,” said Marina Renneke, a company spokesperson. “Since learning of the incident, the Blue Yonder team has been working diligently together with external cybersecurity firms to make progress in their recovery process. We have implemented several defensive and forensic protocols.”
The attack was previously reported by CNN, which said some UK grocery store chains had taken steps to deal with the incident.
A representative for the UK grocery chain Morrisons told Bloomberg News on Monday that the Blue Yonder breach had impacted warehouse management systems but added that the stores are now operating “satisfactorily” on back-up systems. Sainsbury’s confirmed the company used Blue Yonder but said it wasn’t experiencing disruptions because it had a back-up solution. An Asda spokesperson said the company used Blue Yonder but was unaffected.
Scottsdale, Arizona-based Blue Yonder’s customers include manufacturing, grocery, third-party logistics, automotive and restaurant companies, according to its website.
財(cái)富中文網(wǎng)所刊載內(nèi)容之知識(shí)產(chǎn)權(quán)為財(cái)富媒體知識(shí)產(chǎn)權(quán)有限公司及/或相關(guān)權(quán)利人專(zhuān)屬所有或持有。未經(jīng)許可,,禁止進(jìn)行轉(zhuǎn)載,、摘編、復(fù)制及建立鏡像等任何使用,。
