A severe cyberattack on Russia’s Mercury system—part of the Federal State Information System for Veterinary Surveillance (VetIS)—has crippled the nation’s dairy supply chain. The disruption has forced a return to paper documentation, halting operations for major retailers and dairy producers due to legal restrictions and regulatory confusion
A devastating cyberattack has paralyzed Russia’s dairy sector, knocking out the Mercury system—Russia’s official digital platform for animal product certification—part of the Federal State Information System for Veterinary Surveillance (VetIS). The outage, which began earlier this week, has forced producers to revert to outdated paper-based veterinary certificates, leading to widespread logistical disruption across multiple regions.
The Mercury system is mandated under Russian law to ensure the authenticity and safety of all animal-origin food products, including raw milk. The current attack marks the third cyber assault on the platform this year, but local reports state this is the most damaging to date.
As electronic documentation is legally required for transporting and processing animal products, the sudden shift to paper forms has caused gridlock. Several regional distribution hubs have refused deliveries altogether. Prominent retailers like Lenta, Yandex Lavka, and Miratorg have reportedly declined accepting goods without digital certification, exacerbating the already fragile supply chain.
Soyuzmoloko, the national dairy producers’ association, expressed concern about regulatory ambiguity. While the Ministry of Agriculture temporarily permits paper certificates, many retailers exclusively operate on digital systems, leaving processors unable to complete transactions.
“The lack of digital infrastructure has essentially frozen movement in parts of the industry,” Soyuzmoloko stated in an official release. “Large-scale producers are the hardest hit, as emergency procedures cannot accommodate high-volume transactions over an extended period.”
The cyberattack has also severed communication lines with other government platforms, further compounding the issue. As of now, no group has claimed responsibility. However, the incident draws eerie parallels to the December 2024 ransomware attack on a major Siberian dairy facility, speculated to have political motivations.
Restoration efforts are ongoing, with government officials estimating that full functionality may not return before the end of the week. Meanwhile, the dairy industry faces not just financial losses, but serious questions regarding its digital resilience and operational continuity.
