Cyber Incident Victim: Kettering

A logistics and training firm based in Kettering, KNP Logistics Group, suffered a significant cyber attack in June 2023. The attack was identified as a ransomware incident that targeted the company's key operational systems, internal processes, and sensitive financial information. This security breach caused substantial disruption to the company's business operations, crippling its ability to function effectively. The attack directly damaged the financial position of the entire group, which was the parent company of the 158-year-old haulage firm Knights of Old. The severe impact on systems and financial data rendered the company unable to secure the urgent additional investment and funding required to continue trading, ultimately leading to a critical financial crisis.

As a direct consequence of the ransomware attack and the resulting financial distress, KNP Logistics Group entered administration. The administration process was handled by joint administrators Rajnesh Mittal and Philip Armstrong of FRP Advisory Trading Limited. Their assessment confirmed that the cyber incident was a primary factor in the company's collapse, as it occurred against a backdrop of already challenging market conditions. The administrators determined that the business was no longer viable and could not continue operating. This decision led to the immediate termination of a large portion of the workforce.

The administrative action resulted in approximately 730 employees being made redundant. The job losses affected the vast majority of the group's staff across its various subsidiaries. The group's structure included entities acquired through a merger in 2016, such as Derby-based Nelson Distribution Limited, Isle of Wight-based Steve Porter Transport Limited, and Merlin Supply Chain Solutions Limited, which had locations in Islip and Luton. All of these operations were impacted by the administration and the subsequent redundancies, with the notable exception of Nelson Distribution Limited, which was sold as a going concern.

A small contingent of 170 employees was not made redundant immediately. This group consisted of staff retained from Nelson Distribution Limited following its sale and a separate small team kept on to assist the administrators with the complex process of winding down the group's remaining operations. The joint administrators stated their intention to support all affected staff through the difficult period of transition and unemployment. They also planned to contact the group's creditors as soon as possible to address the outstanding financial obligations left in the wake of the company's failure.

The incident brought a definitive end to the long history of Knights of Old, which had started as a single horse and cart operation in 1865 and had grown into one of the UK's largest privately owned logistics companies. The ransomware attack served as a catalyst for its sudden closure, demonstrating the severe real-world consequences a cyber incident can have on an organization's viability. The operational disruption and financial damage proved insurmountable, leading to the complete dissolution of the parent company and the loss of hundreds of jobs across multiple locations in England. The administrators cited the attack as the pivotal event that prevented the company from securing a lifeline and ultimately caused its failure.