Food industry must beef up cybersecurity
Advertisement
Read this article for free:
or
Already have an account? Log in here »
To continue reading, please subscribe:
Monthly Digital Subscription
$1 per week for 24 weeks*
- Enjoy unlimited reading on winnipegfreepress.com
- Read the E-Edition, our digital replica newspaper
- Access News Break, our award-winning app
- Play interactive puzzles
*Billed as $4.00 plus GST every four weeks. After 24 weeks, price increases to the regular rate of $19.00 plus GST every four weeks. Offer available to new and qualified returning subscribers only. Cancel any time.
Monthly Digital Subscription
$4.75/week*
- Enjoy unlimited reading on winnipegfreepress.com
- Read the E-Edition, our digital replica newspaper
- Access News Break, our award-winning app
- Play interactive puzzles
*Billed as $19 plus GST every four weeks. Cancel any time.
To continue reading, please subscribe:
Add Winnipeg Free Press access to your Brandon Sun subscription for only
$1 for the first 4 weeks*
*$1 will be added to your next bill. After your 4 weeks access is complete your rate will increase by $0.00 a X percent off the regular rate.
Read unlimited articles for free today:
or
Already have an account? Log in here »
Hey there, time traveller!
This article was published 28/06/2021 (1556 days ago), so information in it may no longer be current.
MEAT processing giant JBS recently paid out a US$11 million ransom following a cyber attack, according to reports. Most of its meatpacking facilities, including the one in Alberta, remained idle for a few days.
Most of us link the concept of cyber attacks with information-technology companies, governments and media. But experts have warned the food industry for years about the threat of becoming an active target for hackers. What was once purely academic has become a reality.
Efforts to counter cyber attacks in the industry have been timid, at best. At the very least, it wasn’t an openly discussed topic among industry leaders.
The fact the world’s largest beef and pork processor was targeted by hackers earlier this month is certainly a cause for concern, and can serve as a major wake-up call. We can easily imagine such companies as Cargill, Olymel, Maple Ridge Farms, McCain, Maple Leaf, Lassonde, Sysco, Loblaw, Sobeys, Metro and other major players could also become targets.
Managing systemic risks is not new to the food industry — far from it. Threats related to food safety, food fraud and, of course, pandemics have been considered critical issues for years.
The focus has always been on the integrity and quality of ingredients and products coming in and out of facilities. The pandemic made companies focus more on worker safety and the human role in manufacturing the food we consume every day. It has always been about keeping everyone safe, starting with consumers.
Cybersecurity goes to the core of a company’s operational nature, since it goes beyond the food we eat. Ransoms aren’t intuitively compatible with how food companies manage risks.
The food industry is a critical piece of our economy and changes in the industry make it a more likely target. Operations are adopting high-tech innovations such as drones, GPS mapping, soil sensors, autonomous tractors, artificial intelligence and more. These changes are needed, but they can make the industry a primary target.
Efforts to counter cyber attacks in the industry have been timid, at best. At the very least, it wasn’t an openly discussed topic amongst industry leaders.
As the industry becomes more data-driven, it will also become more vulnerable to cyber attacks.
On the other side of the digital spectrum, many food producers still use outdated operating systems. One can only hope that most management teams in the food industry are reviewing their IT systems and figuring out how vulnerable they are to cyber attacks.
For consumers, the potential consequences of these attacks aren’t trivial. Disruptions can lead to food shortages and higher prices at retail. Or worse, cybersecurity breaches could lead to procurement issues and inadvertent alterations to ingredients put into the food sold at retail.
Ransom requests are just the beginning. Evil has no shame, no limits and it can harm a great number of consumers within days, perhaps even hours. The fact JBS paid a ransom signalled to perpetrators that it can work. We should expect more attacks.
Virtually no mandatory cybersecurity rules govern the agri-food businesses that account for close to 20 per cent of the Canadian economy. Some trade groups may have voluntary guidelines, but that’s the extent of it.
The federal Canadian Food Inspection Agency (CFIA) has no material on cybersecurity — not a single mention — on its website. Its world is often exclusively about pathogens and allergens, but its focus requires a broader view, now more than ever. More information-sharing mechanisms would be required for the industry to protect itself, and the CFIA should be playing a more active role.
With the attack on JBS, the food industry has just experienced its own Tylenol moment. In 1982, someone tampered with bottles of Tylenol in Chicago-area retail stores and poisoned several people, killing at least seven. Many bottles were laced with potassium cyanide.
The murderers took the industry completely by surprise, but the incident led to significant changes in how bottles are sealed and secured. Hopefully, the JBS incident will also lead to increased security and protection.
Sylvain Charlebois is senior director of the agri-food analytics lab and a professor in food distribution and policy at Dalhousie University.
© Troy Media