Cyber Incident Victim: Laiteries Réunies de Genève

On or before April 15, 2022, cybercriminals conducted a successful cyberattack against Laiteries Réunies de Genève, a major dairy cooperative headquartered in Plan-les-Ouates, Switzerland. The attackers exfiltrated approximately 140 gigabytes of internal company data during the breach. The stolen information was subsequently published on darknet platforms, making sensitive proprietary and personal data accessible to unauthorized parties. Compromised records included employee identification documents, internal pricing details specifying amounts paid to milk producers, and pricing information charged to distributors. The cooperative operates across Geneva, Vaud, and neighboring France, though the precise scope of affected regional operations was not disclosed. No technical details regarding the attack vector or intrusion methods were revealed in public reporting.

The unauthorized disclosure of pricing structures threatened competitive harm by exposing confidential business arrangements with suppliers and clients. Publication of employee identity documents created risks of identity theft and fraud for affected personnel. Company director statements confirmed the incident was actively managed, but no specific containment measures, forensic actions, or law enforcement engagements were described. The cooperative did not publicly disclose whether ransomware was involved, whether data was encrypted, or if attackers issued extortion demands. Operational impacts such as production disruptions or financial losses were not quantified in available reporting. The breach represented a significant data exposure event for the agricultural sector in western Switzerland, though long-term consequences remained unstated by officials at the time of disclosure.