2 min read

Ransomware halts fairlife operations in the US

Coca-Cola says a ransomware attack hit fairlife systems tied to production, forcing a suspension of US operations while the incident is investigated.

Image: Engadget

Coca-Cola has suspended fairlife’s US operations after a ransomware attack hit part of the dairy subsidiary’s systems, including systems related to production.

A case of fairlife milk
A case of fairlife milk

In an SEC filing, Coca-Cola said it discovered on July 16, 2026 that a third party had gained unauthorized access to part of fairlife’s network. The company said the intrusion was “in connection with a ransomware event,” but did not disclose further technical details. The incident is still under investigation.

Coca-Cola said it has brought in external cybersecurity experts and notified authorities. According to the filing, product quality and safety have not been affected, and fairlife’s production in Canada remains operational.

“The full scope, nature and impacts of the incident are not yet known.” “Accordingly, [Coca-Cola] has not yet determined whether the incident is reasonably likely to materially affect the Company.”

Coca-Cola SEC filing

As TechCrunch noted, fairlife posted $4 billion in sales in 2024. That makes the disruption notable even before Coca-Cola determines any material business impact. For now, the immediate effect is clear: US production is paused, and if the outage drags on, fairlife products could become harder to find on store shelves.

Recommended reading

Coca-Cola stops fairlife US output after ransomware hit

Sophia Reynolds

Security Editor

Sophia unpacks the invisible wars happening on our networks. Covering cybersecurity, privacy legislation, and cryptography, she exposes how our data is weaponized and defended. Before joining for(geeks), she spent years as a penetration tester. She's the reason the rest of the team uses physical security keys.

via Engadget

// Keep reading