Estrella Damm

Damm, operating under the well-known brand Estrella Damm, is a major Spanish brewery with production facilities that include a primary plant central to its bottling operations. The company supplies beer to markets, maintaining sufficient stock to manage deliveries even during production disruptions. Its operations rely on computer-driven processes for bottling, indicating a level of automation in manufacturing. The brewery's scale is suggested by the impact of a two-hour halt at its main facility, which temporarily paralyzed production across its sites. Emergency protocols were activated during incidents to mitigate operational damage. The company's ability to resume partial operations quickly and anticipate full recovery demonstrates established contingency measures. Supply chain resilience was evident as deliveries continued unaffected due to pre-existing inventory buffers. The timing of disruptions during lower-demand periods helped avert more severe consequences. The brewery did not publicly disclose attack specifics or ransom involvement, maintaining a reserved communication stance. This incident highlights the critical role of IT systems in modern brewing production and the company's focus on maintaining output stability.

In November 2021, Damm experienced a highly complex cyber-attack that targeted its production systems, causing temporary halts across multiple facilities. The primary plant was paralyzed for two hours before partial operations resumed, affecting computer-driven bottling processes but not delivery logistics. The company's emergency response protocols were immediately activated, allowing for a swift recovery that minimized long-term impact. Full production levels were restored following the attack, with the brewery anticipating complete normalization shortly thereafter. The incident occurred during a period of lower demand, which reduced potential supply chain disruptions. Despite the attack's complexity, Damm did not reveal technical details or confirm whether a ransom was demanded. This event underscores the vulnerability of industrial control systems in the beverage sector. The brewery's operational resilience was tested, revealing strengths in inventory management and crisis response. The attack did not result in prolonged downtime, suggesting effective business continuity planning. Damm's handling of the incident reflects a cautious approach to cybersecurity disclosures, common among firms facing such threats.