Novabev Group, the parent company of premium vodka brand Beluga, has confirmed it was hit by a sophisticated ransomware attack on July 14, 2025, temporarily disrupting operations and affecting IT infrastructure across the company and its WineLab subsidiary.
The Russian spirits manufacturer has refused to pay any ransom demands, maintaining a firm stance against negotiating with cybercriminals.
The attack, which Novabev Group described as “unprecedented” and “large-scale,” temporarily knocked out portions of the company’s IT systems and made some services unavailable.
The coordinated cyberattack forced the company to implement emergency protocols while working to restore normal operations.
“The incident resulted in temporary disruption of part of the IT infrastructure, affecting the availability of some of the group’s and WineLab’s services and tools,” the company stated in an official announcement released on July 16.
“The attackers contacted us and demanded a monetary reward. However, the company maintains a principled position of rejecting any interaction with cybercriminals and refuses to fulfill their demands.”
Despite the disruption, Novabev Group indicated that customer personal data appears to have remained secure.
The company emphasized that based on current information, no customer data has been compromised, though investigations are ongoing to confirm the full extent of the breach.
The vodka maker has assembled a round-the-clock response team to address the situation, bringing in external cybersecurity experts to assist with the investigation and recovery efforts.
The company’s IT department is working continuously to restore full functionality to affected systems and minimize business disruption.
Novabev Group, which produces the internationally recognized Beluga vodka brand, had previously invested heavily in cybersecurity infrastructure.
The company regularly conducted vulnerability assessments, implemented daily monitoring systems, and provided employee training programs designed to prevent such attacks. These defensive measures had successfully repelled previous cyber threats.
“Novabev Group pays close attention to cybersecurity, regularly improving infrastructure defenses through daily monitoring, vulnerability remediation, and employee training.
Thanks to these efforts, the company has been able to repel previous attacks,” the company noted in its statement.
The attack on Beluga’s parent company reflects a broader trend of increasingly aggressive cybercrime targeting major corporations worldwide.
Ransomware attacks have surged in recent years, with criminals becoming more sophisticated in their approach and targeting high-profile companies across various industries.
“Cybercrime is becoming more aggressive. We will learn from these attacks and strengthen our defenses to minimize the risk of future ones,” Novabev Group stated, acknowledging the evolving threat landscape.
The company has apologized to customers and business partners for any inconvenience caused by the attack and thanked them for their patience and understanding during the recovery process.
Operations are expected to return to normal as the investigation concludes and security measures are reinforced.
Get Free Ultimate SOC Requirements Checklist Before you build, buy, or switch your SOC for 2025 - Download Now
