Security News > 2021 > October > Ransomware Sinks Teeth into Candy-Corn Maker Ahead of Halloween

The manufacturer of some of Halloween's most popular sweet treats has been hit with a ransomware attack that disrupted production mere weeks before the candy industry's biggest holiday.

Chicago-based Ferrara Candy Co. confirmed publicly that a cyber-incident that encrypted some of its systems on Oct. 9, affecting the production of its numerous popular confection brands, including Brach's Candy Corn, which is a confection that divides candy enthusiasts into "Love it" and "Hate it" groups.

Ferrara said it already had fulfilled most of its candy orders for Halloween when it typically does - in early August - so supply this year should be as per usual, according to the report.

That's good news not only for Ferrara but also distributors of candy and confections in general, as manufacturers typically rake in $4.6 billion of of their $36 billion in yearly sales during Halloween.

Aside from Brach's Candy Corn-which represents 85 percent of candy corn sales in the United States during the Halloween season-other popular candies that Ferrara turns out include SweetTarts, Laffy Taffy, Runts, Fun Dip and Red Hots.

Industry watchers said they're not surprised that threat actors targeted Ferrara with a ransomware attack at a time when it's likely to be the most desperate to get production back up and running at full speed quickly, boosting their chances of cashing in.

News URL

https://threatpost.com/ransomware-candy-corn-halloween/175630/