Toy and entertainment giant Hasbro has confirmed a significant cybersecurity breach, with the company warning that full recovery could take “several weeks.” The attack, detected on March 28, forced Hasbro to temporarily shut down some systems while it works to secure operations.
Business Continuity Measures in Place
Despite the disruption, Hasbro insists it’s maintaining core functions. According to an SEC filing, the company has activated business continuity plans to ensure it can still process orders, ship products, and conduct other essential activities. However, parts of the Hasbro website were offline as of Wednesday, displaying a “maintenance” message.
Uncertainty Around Breach Details
The nature of the attack remains unknown. It’s unclear whether ransomware, data theft, or another type of cyber intrusion is responsible. Hasbro has engaged cybersecurity professionals but acknowledges that it’s still “implementing measures” to secure systems, raising questions about the extent of ongoing access by hackers.
The company declined to comment on whether ransom demands have been made or if any data has been stolen.
Rising Threat to Corporations
Cyberattacks targeting large companies are becoming increasingly common, with hackers seeking financial gain through data theft and extortion. These attacks can cripple operations and cause lasting financial damage. The 2025 cyberattack on Jaguar Land Rover, which halted production for months, highlights the severe consequences – ultimately requiring a $1.5 billion government bailout to stabilize the company and its supply chain.
Hasbro’s Position
Hasbro employs over 5,000 people and owns the rights to iconic brands like Transformers, Monopoly, My Little Pony, and Dungeons & Dragons. The company’s warning of “several weeks” for full resolution suggests a complex and potentially deep breach.
Hasbro’s SEC filing notes the investigation is ongoing to determine the full scope of the breach. The company cannot yet confirm if data was stolen.
The situation underscores the growing vulnerability of even established corporations to cyber threats and the potential for significant disruption.
