United Natural Foods Faces $400M Sales Loss from June Cyberattack

Top Highlights

1. Financial Impact: United Natural Foods, Inc. (UNFI) projects a $350-$400 million reduction in fiscal 2025 net sales due to a June 2025 cyberattack, alongside an estimated net income loss of $50-$60 million.

2. Insurance Offsets Losses: The company anticipates that insurance proceeds will significantly mitigate losses from the cyber incident, which is not expected to impact operations or finances significantly beyond Q4 of fiscal 2025.

3. Operational Disruption: The cyberattack detected on June 5 forced UNFI to take certain IT systems offline, disrupting its ability to fulfill and distribute customer orders.

4. Overall Business Profile: UNFI, a major grocery distributor in North America with over $30 billion in annual revenue, services more than 30,000 locations and offers over 250,000 products across its distribution network.

Key Challenge

In June 2025, United Natural Foods, Inc. (UNFI), a prominent distributor for Amazon’s Whole Foods, was battered by a cyberattack that disrupted its operational landscape, leading to a projected decline in net sales estimated between $350 and $400 million for the fiscal year. The breach, first detected on June 5, prompted the company to take immediate defensive measures, including taking certain IT systems offline, which significantly hampered its ability to fulfill customer orders. Despite the fiscal setback, UNFI anticipates that insurance proceeds will alleviate some of these losses, forecasting an eventual net loss of $50 to $60 million and an adjusted EBITDA of $40 to $50 million.

Reporting this incident, UNFI’s CEO Sandy Douglas expressed gratitude to stakeholders for their resilience during this upheaval while delineating the company’s focus on returning to operational normalcy. As the largest full-service grocery partner in North America, UNFI services over 30,000 locations and boasts an impressive annual revenue exceeding $30 billion. Although the company remains tight-lipped regarding specifics—such as whether ransomware was involved—the incident underscores the vulnerabilities within corporate IT infrastructures in an increasingly digital landscape.

Potential Risks

The recent cyberattack on United Natural Foods, Inc. (UNFI) underscores a significant risk to interconnected businesses, consumers, and organizations reliant on digital infrastructure. As UNFI serves as a pivotal distributor for Amazon’s Whole Foods and over 30,000 other locations, disruptions in its operations could lead to cascading effects on supply chains, resulting in delayed deliveries and diminished inventory for retailers. This vulnerability not only jeopardizes financial stability—evidenced by the projected $350 to $400 million hit to net sales in fiscal 2025—but also erodes consumer trust, as customers may face shortages of essential products. Furthermore, other organizations may be compelled to reevaluate their cybersecurity protocols, incurring additional costs to safeguard against similar threats, thereby amplifying the economic repercussions across the sector. The potential for reputational damage and lost sales extends beyond UNFI, highlighting the profound interconnectedness of today’s digital economy and the inherent risks associated with lapses in cybersecurity.

Possible Next Steps

Timely remediation is crucial in the wake of cyberattacks to minimize financial and reputational damage, as exemplified by United Natural Foods’ projected $400 million sales deficit stemming from their June breach.

Mitigation Steps

1. Incident Response Plan
2. System Isolation
3. User Notification
4. Data Recovery
5. Vulnerability Assessment
6. Enhance Training
7. Threat Intelligence Sharing

NIST CSF Guidance
NIST CSF emphasizes proactive risk management through continuous monitoring and quick action on vulnerabilities. Refer to NIST SP 800-61 for detailed procedural frameworks and guidelines surrounding incident response strategies.

Explore More Security Insights

Discover cutting-edge developments in Emerging Tech and industry Insights.

Explore engineering-led approaches to digital security at IEEE Cybersecurity.

Disclaimer: The information provided may not always be accurate or up to date. Please do your own research, as the cybersecurity landscape evolves rapidly. Intended for secondary references purposes only.

Cyberattacks-V1