Cyber Incident Victim: Agropur Cooperative

Agropur, a major North American dairy cooperative, experienced a data breach involving unauthorized exposure of portions of its shared online directories. The incident was detected by the company, prompting an immediate investigation to assess its scope and impact on customers. Agropur confirmed the breach did not compromise transactional systems or disrupt core business operations, which include milk processing for brands such as Natrel, Lucerne, Sealtest Dairy, Island Farms, and Oka. On June 25, 2024, Agropur began notifying customers about the exposure, though the specific types of data involved and the number of affected individuals remained undetermined as of the company's public statements. The cooperative engaged external cybersecurity experts and law enforcement to assist with the investigation while implementing corrective measures to mitigate the incident's impact. Agropur emphasized no evidence of data misuse had been identified but advised customers to remain vigilant against potential phishing attempts leveraging the exposed information.

The company, which processes 6.7 billion liters of milk annually and generates $5.1 billion in revenue, maintained operational continuity throughout the incident. A spokesperson stated the breach was confined to shared directories and reiterated Agropur's commitment to resolving the issue without compromising the investigation's integrity. No further details were disclosed to avoid prejudicing ongoing forensic efforts. Customers were alerted as a precautionary measure while the cooperative worked to finalize the investigation and provide additional clarity. Agropur's response included securing affected systems and coordinating with external partners to address vulnerabilities. The breach's full ramifications, including potential financial or reputational consequences, remained unclear pending the investigation's completion.