Cyber Incident Victim: Alcampo

Alcampo experienced a cybersecurity incident during the overnight hours spanning Sunday to Monday, as confirmed by company sources to EXPANSIÓN. The attack disrupted operational systems, though specific technical details regarding affected infrastructure or attack vectors were not disclosed publicly. Internal protocols were activated immediately to monitor systems and initiate recovery procedures aimed at restoring normal business functions. No evidence of customer data compromise was identified during the initial assessment, according to the company’s statement. The incident timeline aligns with reports from financial publication Cinco Días, which first indicated the attack’s occurrence prior to Alcampo’s official acknowledgment. Operational impacts remained unspecified beyond generalized references to affected "operativa," leaving the exact scope of service interruptions unclear.

Company representatives emphasized their focus on containment and restoration efforts without elaborating on mitigation strategies or third-party involvement. Continuous monitoring mechanisms were implemented to assess system integrity throughout the incident response phase. The absence of confirmed data exfiltration distinguished this event from ransomware or breach scenarios commonly associated with retail sector attacks. Alcampo’s public communications avoided attributing blame to specific threat actors or disclosing potential financial or reputational repercussions. No supplementary information regarding customer notifications, regulatory disclosures, or long-term remediation plans was provided in the available reporting. The incident remained under investigation at the time of publication, with no further updates on forensic findings or operational normalization timelines.