United Natural Foods, Inc. (UNFI) is facing major disruption due to a cybersecurity breach, forcing the company to take key systems offline. Discovered on June 5, 2025, the attack has already disrupted daily operations and is now threatening to impact grocery store shelves across the U.S. and Canada.
The Rhode Island-based distributor detected unauthorized activity within its IT systems and immediately launched an incident response plan. As a result, several internal systems were shut down to contain the threat. This move has caused delays in order fulfillment.
In an official statement, UNFI said, “We have identified unauthorized activity in our systems and have proactively taken some systems offline while we investigate.”
This development is concerning because UNFI supplies products to roughly 30,000 retail locations, including Whole Foods Market, making it a big player in the region’s food supply network. With more than 58 distribution centers and over 31 million square feet of warehouse space, even a temporary halt in operations has the potential to cause noticeable shortages.
Given UNFI’s massive reach, early signs of disruption have started to show. Some users on Reddit reported that Whole Foods shelves appeared emptier than usual, and there were claims that UNFI drivers were instructed not to report to work. While these reports remain unconfirmed by the company, employees and retailers are concerned.
In response to the incident, UNFI has brought in third-party cybersecurity experts to investigate the breach. The company has also notified law enforcement, though it has not confirmed whether the attack involved ransomware. The decision to shut down critical systems, however, suggests the breach posed a significant threat.
Despite deploying emergency workarounds to support limited operations, UNFI acknowledged that further disruptions should be expected in the days ahead.
“As we work through this issue, our customers, suppliers, and associates are our highest priority,” the company added. UNFI has committed to restoring systems as safely and quickly as possible while maintaining strict security protocols throughout the process.
While the extent of the cyberattack is still unknown, and the investigation is in early stages, the incident reveals the growing risk of cyberattacks within critical infrastructure industries like food distribution. With digital systems now deeply embedded in logistics and inventory management, even a short disruption can have serious consequences.
For many consumers, this could mean delays in grocery restocking or missing items on store shelves, reminding everyone of how digital threats can quickly affect everyday life.
This breach emphasizes the need for strong cybersecurity defenses and transparent communication when incidents occur.