Largest candy corn maker in US gets hacked ahead of Halloween

·1 min read

A major U.S. candy company is struggling to fill orders before Halloween after ransomware hackers encrypted its systems.

Ferrara, the Chicago-based manufacturer of candies like Brach's Candy Corn, SweeTarts, Laffy Taffy, Nerds, Red Hots, Lemonhead candies, Boston Baked Beans, Atomic Fireballs, Pixy Stix and Everlasting Gobstoppers, has been able to resume production only "in select manufacturing facilities," a spokesperson said in an emailed statement Wednesday.

Related: "My compliments to the chef," the reviewer told TODAY.

Ransomware, a pernicious form of cybercrime where hackers take over an organization’s computers and demand payment to let them go and not leak files to the public, has been used to extort businesses worldwide for billions of dollars in recent years. Even the food supply chain isn’t safe: In recent weeks, hackers have locked at least three Midwestern grain distributors.

Ferrara first noticed that hackers were encrypting its computers and demanding a payment on Oct. 9, and has hired outside experts to help restore its systems, the statement said. It disclosed the attack on Tuesday.

Related: Candy corn bratwurst is here … and it's "slightly sweet & not scary at all."

The spokesperson declined to say what percentage of orders it expected to fill before Halloween. All of its candy distribution centers are currently shipping out products, the spokesperson said.

"We appreciate our employees' and customers' patience and understanding," the spokesperson said.

A version of this story first appeared on

Our goal is to create a safe and engaging place for users to connect over interests and passions. In order to improve our community experience, we are temporarily suspending article commenting