Cyber Incident Victim: Camst

On November 29, 2022, Italian catering and facility management company Camst Group experienced a disruptive cyberattack targeting its corporate IT infrastructure. The company confirmed that external attackers compromised its systems, rendering corporate data partially inaccessible. Initial reports characterized the incident as a presumed ransomware attack, though Camst did not explicitly confirm this attribution. In response, the company immediately activated pre-established security protocols, including the precautionary shutdown of all servers to contain the breach. Camst initiated comprehensive forensic investigations to assess the attack’s scope, identify potential data exfiltration, and permanently eradicate the threat actor’s access. Technical teams prioritized full system restoration, with the company publicly committing to achieving 100% recovery of its information systems.

The attack significantly disrupted Camst’s operational workflows, particularly affecting its food service divisions. Order processing systems at central cooking facilities and self-service restaurants experienced severe slowdowns, impairing meal preparation schedules. These technical failures cascaded into logistical delays across meal delivery and service operations. Despite these challenges, Camst maintained continuity in core catering and facility management services for clients in healthcare, education, and corporate sectors. The company acknowledged the attack’s impact on real-time data accessibility but emphasized no complete service outages occurred. Restoration efforts focused on rebuilding compromised systems while forensic analysts worked to identify the intrusion vector and residual vulnerabilities. Camst’s public communications highlighted operational resilience while transparently documenting ongoing recovery timelines and residual service delays stemming from manual workarounds.