WestRock

WestRock, headquartered in the United States, experienced a significant ransomware incident on January 23, 2021. The attack targeted specific operational and information technology systems within the company. Upon detection, WestRock's internal security teams immediately initiated response and containment measures. This effort was bolstered by the engagement of external cyber defense firms to assist in managing the situation. The company proactively notified relevant law enforcement authorities and informed its customers about the security event. A primary focus during the incident was the restoration of affected systems and the maintenance of critical business operations to mitigate widespread disruption. The attack introduced delays across various parts of the organization's functions.

The financial and operational consequences of the ransomware event were material. WestRock indicated the incident potentially led to deferred or lost revenue and incurred incremental costs, resulting in adverse financial impacts. Following the public disclosure of the attack, reports noted a temporary decline in the company's share value. Recovery initiatives were subsequently prioritized with the aim of minimizing effects on customers and ensuring operational continuity. The incident underscores the persistent threat of ransomware attacks against corporate entities and the comprehensive response protocols required to address such security breaches.