Back to Industry

Industry - Data Breach

moderateAnti-PrivacyData Breach

Executive Summary

Coca-Cola disclosed that a ransomware attack on its Fairlife dairy subsidiary forced the temporary shutdown of all U.S. production facilities, though product quality and safety were not affected. The company detected unauthorized access to production-related systems and activated incident response protocols, but has not yet confirmed whether any data was stolen or disclosed the responsible ransomware group. The full impact on operations remains under investigation with assistance from cyberse...

What Happened

On July 16, 2026, The Coca-Cola Company disclosed in an SEC filing that its Fairlife dairy subsidiary experienced a ransomware attack involving unauthorized access to production-related systems. The attack forced Fairlife to temporarily suspend all production at its U.S. facilities, though Canadian operations remained unaffected. Coca-Cola activated incident response protocols and engaged outside cybersecurity experts and law enforcement, but the investigation into the full impact is ongoing.

Who Is Affected

Fairlife's U.S. production operations were directly impacted by the shutdown, affecting the supply chain for ultra-filtered milk products, protein shakes, and nutrition drinks sold throughout the United States. Coca-Cola has not yet confirmed whether customer data, employee information, or other sensitive business data was stolen during the unauthorized access. Consumers may experience product availability disruptions while production remains suspended.

Why It Matters

This incident demonstrates how ransomware attacks can extend beyond data theft to disrupt critical production infrastructure at major food and beverage companies, potentially affecting supply chains and consumer access to products. The lack of clarity about data exfiltration highlights the uncertainty period following such attacks, during which companies must balance transparency obligations with ongoing investigations. As a publicly traded company, Coca-Cola's SEC disclosure requirement provides a window into corporate cybersecurity incidents that might otherwise remain private.

What You Should Do

If you are a Fairlife customer, monitor official company communications for updates about potential data exposure, particularly if you have participated in loyalty programs or provided personal information through the brand's platforms. Watch your financial accounts for unusual activity if you have made direct purchases from Fairlife. Stay alert for phishing attempts that may exploit public awareness of this incident by impersonating Coca-Cola or Fairlife representatives requesting personal information.

Summary generated from verified sources and reviewed before publication. How we summarize.

Coca-Cola disclosed that a ransomware attack on its Fairlife dairy subsidiary... - Industry | PrivacyWire