Cyber Incident Victim: Novabev Group

On July 14, 2025, Novabev Group and its Winelab retail network experienced a significant cyberattack described by the company as unprecedented in scale and coordination. The attack disrupted a portion of the company's IT infrastructure, impairing the availability of certain services and operational tools across both entities. Hackers initiated contact with Novabev Group following the breach, explicitly demanding monetary payment as ransom. The company maintained its established policy against negotiating with cybercriminals, refusing to comply with the financial demands. Prior cybersecurity measures—including daily monitoring, vulnerability remediation, and employee training—had successfully defended against previous attacks but proved insufficient against this coordinated offensive. Service disruptions occurred immediately following the infrastructure compromise, though the company did not specify exact downtime durations or identify affected systems beyond generic references to "services and tools."

Novabev Group mobilized its IT team for 24/7 incident response operations while engaging external cybersecurity experts to accelerate investigation and recovery efforts. Restoration of normal operations became the primary focus, with all resources directed toward minimizing service interruption timelines. Preliminary analysis indicated no compromise of customer personal data, though the company emphasized this assessment remained provisional pending ongoing forensic examination. The attack's operational impacts prompted public apologies to clients and business partners for service disruptions. Novabev Group acknowledged evolving cybercrime tactics in its statement and committed to strengthening defensive mechanisms based on lessons learned from this incident. No attribution to specific threat actors or technical details about attack vectors were disclosed in the available public communications.