Cyber Incident Victim: Microlise

On October 31, 2024, a cyber incident disrupted DHL's delivery tracking systems globally after impacting Microlise, a third-party transport technology provider. Nisa, a convenience retail group reliant on DHL for logistics, alerted its retailers that morning that the attack had rendered DHL's tracking solution inoperable, eliminating visibility into delivery progress. While initial reports suggested global disruption across DHL, subsequent assessments indicated the operational impact was more limited in scope than initially claimed. The incident specifically affected Microlise's systems, which DHL Supply Chain UK utilized for tracking, but did not compromise any DHL-owned infrastructure. Despite the loss of real-time tracking capabilities, DHL maintained delivery operations without schedule disruptions, relying on drivers and customer service teams to manually communicate delays directly to retailers, albeit with potential timing delays compared to automated systems.

DHL implemented contingency measures, including a temporary system providing retailers with updated estimated delivery arrival times at 15-minute intervals. The company confirmed the incident was isolated to its UK Supply Chain division’s use of Microlise services and did not affect other DHL Group operations, including Express, eCommerce, or Global Forwarding. Microlise initiated efforts to isolate compromised systems and restore full functionality, though no timeline for resolution was provided. Nisa informed retailers that delivery status updates remained unavailable until Microlise completed system recovery. DHL emphasized ongoing coordination with Microlise and adherence to safeguarding protocols while maintaining customer service levels through manual workarounds. The company’s public statement clarified the attack’s confinement to Microlise’s environment and reiterated the absence of broader operational consequences beyond the tracking outage.