Cyber Incident Victim: Duvel Moortgat
Date:
Mar 2024
Location:
Belgium
Summary
Duvel Moortgat suffered a cyberattack involving malware that infected its servers, forcing their shutdown and causing widespread production halts across operations. The incident impacted both Belgian facilities, including its Breendonk brewery, and a U.S. site. Discovery occurred following the overnight breach, with critical systems compromised. The company confirmed operational disruptions but provided no specifics on malware type or recovery timelines. No customer data breaches or extortion claims were disclosed in initial reports.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On March 6, 2024, Duvel Moortgat's brewery in Breendonk, Belgium, experienced a cyberattack that disrupted operations. The incident occurred overnight into Wednesday and was detected on Wednesday morning at the Antwerp province facility. Upon discovery, the company confirmed that malicious software had infected its servers, prompting an immediate shutdown of affected systems to contain the compromise. This defensive action caused widespread production stoppages across the brewery's operations. A company spokesperson verified that the cyberattack impacted multiple locations, including all Belgian facilities and at least one U.S.-based site, though specific American locations were not disclosed.
The attack's primary operational consequence was the paralysis of manufacturing processes following the server shutdown. No details regarding data theft, ransom demands, or attacker identity were confirmed by the company or sources. Response efforts focused on isolating compromised infrastructure, with no public timeline provided for restoration of normal operations. The incident marked a significant disruption for the international brewer, though the full financial or supply chain repercussions remained unquantified in initial reports. Company representatives communicated the breach through Belgian media outlets but did not elaborate on technical specifics of the malware or long-term mitigation strategies beyond the immediate containment measures.