Starbucks forced to pay its baristas manually because of a ransomware attack on third-party software

A ransomware attack has disrupted a third-party software system that Starbucks uses to track and manage its baristas’ schedules, forcing the coffee chain to shift to manual mode to ensure its employees get paid properly.

Ransomware attack disrupts supply chain

Blue Yonder, an Arizona-based cloud services provider, was struck by a ransomware attack in late November 2024, causing considerable disruption to its managed services.

Starbucks is experiencing a disruption in its ability to accurately pay and schedule employees days after one of its software suppliers was hit with a ransomware attack.

The incident has had a knock-on effect on several of its clients, with reports emerging of operational difficulties at numerous Starbucks stores and major UK supermarkets such as Morrisons and Sainsbury’s.
Blue Yonder serves multiple US supermarkets, but the extent of the impact on these businesses is not yet known.

Starbucks forced to pay its baristas manually because of a ransomware attack on third-party software

Starbucks’ store leadership have advised their employees on how to work around the outage manually, and the company will make sure everyone gets paid for all hours worked, according to Starbucks spokesperson Jaci Anderson.

The outage is affecting Starbucks’ back-end systems and hindering employees from viewing and adjusting their schedules, as well as the company’s ability to track workers’ hours.

While Starbucks is continuing to work with Blue Yonder to find a resolution, store managers and baristas have been provided guidance on how best to work around the outage manually. Starbucks is relying on pen-and-paper to calculate employees’ pay.