Meat producer JBS starts to reopen most plants sidelined by cyberattack

A welder in protective gear working inside a meat plant.
Welder Guillermo Rivera working at a meat processing station at the JBS plant in Greeley, Colo., last year. The facility is one of the largest beef plants in the U.S.
(Andy Cross / MediaNews Group / Denver Post )
Share via

JBS is starting to at least partially reopen most idled beef plants across North America and Australia after a cyberattack forced the world’s largest meat producer to halt operations.

The Brazilian food giant said late Tuesday that it had made “significant progress” to resolve the attack and would have the “vast majority” of its plants operational by Wednesday. A second shift at its Greeley, Colo., facility, one of the largest beef plants in the U.S., was set for a regular production day, while plants in Texas, Nebraska and Wisconsin were resuming partial operations, according to company updates posted on Facebook.

By Thursday, an Omaha plant will resume work, and one in Pennsylvania will be back to normal status, labor union leaders said.


“Our systems are coming back online, and we are not sparing any resources to fight this threat,” JBS USA Chief Executive Andre Nogueira said in Tuesday’s statement.

Sunday’s cyberattack forced JBS to shut down all of its beef plants in the U.S., which account for almost a quarter of American supplies, and slow pork and poultry production. Slaughtering operations across Australia were halted and at least one Canadian plant was idled. JBS, which has facilities in 20 countries, also owns Pilgrim’s Pride Corp., the second-biggest U.S. chicken producer. The extent of the outages may never be known because JBS didn’t detail the effects.

JBS said its Canadian beef facility in Alberta, one of the largest in the country, has resumed production. Workers at the Longford beef processing plant in Australia have been told operations will resume Friday, according to a spokesman for the Australasian Meat Industry Employees Union in Tasmania.

The attack and ensuing shutdowns upended agricultural markets and raised concerns about food security as hackers increasingly target crucial infrastructure.

Shares of JBS fell 1.1% in Sao Paulo trading, underperforming the 1% gain of Brazil’s Ibovespa benchmark index.

It’s unclear what the effect on meat prices will be from the latest attack. Retailers don’t always like increasing prices for consumers and may try to resist, said Michael Nepveux, an economist at the American Farm Bureau Federation. “How long it goes on will impact to what level consumers start to see something at the grocery stores,” he said.


Food buyers fear that disruptions from the JBS attack compound ongoing issues in the meat industry when prices are already high.

“It just adds more fuel to the fire,” said Anne Hurtado, a buyer in Chicago for Amigos Meat & Poultry who fears that her JBS orders for this week won’t ship on time. “We’ve been seeing a lot of inflation in the meat industry in the past month. Demand has been high, exports have been high.”

Wholesale beef prices at the meat market in New York are up as much as 2% from Friday, said Kevin Lindgren, director of merchandising at Baldor Specialty Foods.

“Nothing crazy yet,” Lindgren said, though he expects prices will be 10% higher in a week. “It will get progressively higher as the squeeze comes.”

The JBS attack is thrusting America’s system of churning out cheap meat back into the spotlight. The sector is dominated by a handful of titans — Tyson Foods Inc., JBS and Cargill Inc. — which control about two-thirds of U.S. beef.

Taking down even a few plants can disrupt supplies, as seen last year when COVID-19 outbreaks idled plants and sparked meat shortages across the country. The industry is so concentrated that idling the JBS plants meant that the U.S. government on Tuesday couldn’t release some key meat-pricing data that agricultural markets rely on daily.


“Attacks like this one highlight the vulnerabilities in our nation’s food supply chain security, and they underscore the importance of diversifying the nation’s meat processing capacity,” said U.S. Sen. John Thune of South Dakota, the Senate’s second-most-powerful Republican.

The JBS attack comes three weeks after Colonial Pipeline Co., operator of the biggest U.S. gasoline pipeline, was targeted in a ransomware attack attributed to a group called DarkSide. Experts have said there’s some evidence linking the group to Russia. That followed a series of devastating hacks against U.S. government agencies, businesses and health facilities, often blamed on Russia or Russia-based hackers at a fraught time in relations between the countries.

A notorious Russia-linked hacking group is behind the JBS attack, according to four people familiar with the campaign who were not authorized to speak publicly on the matter. The cybergang goes by the name REvil or Sodinokibi.

Russia has no information on the cyberattack but is in diplomatic contact with the U.S. government, Kremlin spokesman Dmitry Peskov said. Cybercrime issues will be on the agenda at a June 16 summit between Presidents Biden and Vladimir Putin, he said.

There have been more than 40 publicly reported ransomware attacks against food companies since May 2020, said Allan Liska, senior security architect at cybersecurity analytics firm Recorded Future.

“It is frightening to see the number of critical hacks and cyberattacks coming into the U.S. and critical infrastructure,” Rep. Kevin Brady (R-Texas) said to David Westin in a Bloomberg TV interview, adding that business and government need to work together to defend against such attacks. “We have to think through our entire supply chain in every critical part of our economy and identify where those cyberweaknesses could be.”