A wave of coordinated cyberattacks has paralyzed the digital systems of several major Russian restaurant chains and food service providers, the Vedomosti business daily reported.

The attacks, which began on July 18, targeted networks run by automation provider iiko and its hosting partner ESTT. Restaurant chains including McDonald’s successor Vkusno i Tochka, coffee chain Cofix, Sushi Master and more saw their operations disrupted.

The attackers bombarded servers with distributed denial-of-service (DDoS) traffic for five consecutive days, overwhelming systems and rendering mobile apps and websites intermittently inaccessible.

On the day the attacks began, Vkusno i Tochka warned customers about processing delays, attributing the issue to failures at its hosting provider. Services were briefly restored before another major attack hit on Monday.

Iiko, which supports digital infrastructure for many restaurants, confirmed that a 12-hour DDoS attack affected its data centers on July 18, followed by another the next day. The company said no customer data was compromised but acknowledged disruptions to internal communications.

One iiko client, the sushi chain Mnogo Lososya, reported that it was unable to process kitchen orders for nearly three days.

An iiko spokesperson told Vedomosti that all services had since been restored and that affected clients had received compensation.

Nikita Tsaplin, CEO of Russian cloud provider RUVDS, told Vedomosti that up to 3,500 ESTT clients may have been affected. He noted a significant uptick in digital attacks in 2025, with incidents up by one-third compared to the same period in 2024 and attack volumes peaking at 1.7 terabits per second.

Digital investigator Igor Bederov suggested the attacks may have been orchestrated by business rivals, pointing out the commercial damage caused by lost revenue, broken payment systems and decreased customer loyalty.

“Even temporary downtime weakens client trust and hurts search engine visibility,” Bederov told Vedomosti.

On July 17, just before the restaurant attacks began, vodka producer Novabev Group, which owns the Beluga and Belenkaya brands, reported a large-scale DDoS attack that halted shipments for several days.

Its retail arm, Vinlab, suffered weeklong disruptions across its network. By Tuesday, more than 100 of its stores had resumed operations.

Mikhail Burmistrov, CEO of Infoline-Analytics, estimated that the downtime may have cost Vinlab roughly 0.8% of its quarterly revenue, or 170 million rubles ($2.2 million).