Coca-Cola Reportedly Hit by Two Major Cyberattacks: Millions of Records at Risk

Coca-Cola may be facing serious cybersecurity trouble, with two well-known hacker groups claiming separate attacks on the company’s systems this month.

The Everest ransomware group says it has stolen sensitive internal data from Coca-Cola, mainly related to its operations in the Middle East. Everest, active since 2020, has a history of high-profile cyberattacks, including those targeting NASA and the Brazilian government.

Meanwhile, a second hacker group called Gehenna claims to have broken into the Salesforce database of Coca-Cola Europacific Partners (CCEP) — the company’s largest bottler and distributor in Europe and the Asia Pacific. According to Gehenna, they have stolen over 23 million records from 2016 to 2025, including customer accounts, contacts, product info, and sensitive CRM data.

If true, this breach could seriously damage CCEP’s ongoing efforts to become “the world’s most digitized bottler.”

So far, Coca-Cola and CCEP have not confirmed any of these claims. Cybersecurity experts caution that ransomware groups often make bold claims to pressure companies into paying up.

Interestingly, this comes just weeks after Everest’s own dark web leak site was hacked and taken offline by unknown attackers. The site briefly showed a message saying, “Don’t do crime CRIME IS BAD xoxo from Prague.”

Coca-Cola has dealt with similar problems in the past. In 2023, a Coca-Cola bottler reportedly paid $1.5 million to hackers to prevent leaked files from going public. In 2018, the company said a former employee took data affecting about 8,000 workers.

Cybersecurity experts warn that these latest incidents, if confirmed, could expose private business and customer information. Customers, employees, and partners are advised to stay alert and follow official updates from Coca-Cola.

Stay tuned for further developments on this ongoing story.