Norwegian mountains

TOMRA: Cyberattack update 2

In reference to the release on 17 July 2023 regarding an extensive cyberattack against TOMRA affecting some of the company’s data systems. To contain the attack, we immediately disconnected selected services and have since disconnected others. A team of internal and external resources is working around the clock to resolve the situation, and affected systems will remain offline until it is safe to open them. No new hostile activities have been detected.

Our primary aim is to continue to deliver our services to customers, reducing the impact this attack has on them. The attack currently has limited impact on TOMRA’s customer operations. Most of TOMRA’s digital services are designed to operate offline for a certain amount of time but may have reduced functionality in the interim. A team is working to establish temporary solutions for all digital systems to support keeping costumer solutions operational over time.

Status of external services:

  • TOMRA Group: Internal IT-services and some backoffice applications remains offline and affects our supply chain management. Major office locations are offline, and employees are asked to work remotely.
  • TOMRA Collection: The reverse vending machines (RVMs) in operation are from different generations. In Europe and Asia the majority continue to work in offline mode, while a limited number of old RVMs are no longer operating. RVMs in Australia and North America remain online and fully connected.
  • TOMRA Recycling: Currently operating as usual, but some functionality is limited due to digital services being offline.
  • TOMRA Food: Currently operating as usual, but some functionality is limited due to digital services being offline.

We continue to work tirelessly to resolve the situation, and remain in dialogue with relevant authorities. We have not received any contact from those who are behind the attack.

TOMRA will remain transparent with all stakeholders, and we will continue to provide updates on tomra.com when we have confirmed information to share.