Coca-Cola’s dairy unit Fairlife shut down US production this week after ransomware hit its manufacturing systems, the company disclosed in a July 16 press release. A third party gained unauthorized access to production-related systems, Coca-Cola said, and law enforcement has been notified. Canadian operations kept running.

Fairlife is the 17th US company to report a cyberattack this year, per Reuters. That pace matters because Coca-Cola is a public company, and the SEC’s cybersecurity disclosure rule requires an 8-K within four business days once a company determines a breach is “material.” Coca-Cola hasn’t filed one yet, it’s still assessing scope, but the clock on that determination started the moment its incident response team activated.

The bigger pattern: 2025 built the case that AI is doing more of the actual breaking-in. The FBI’s 2025 Internet Crime Report logged 22,364 complaints referencing AI, totaling $893 million in losses, inside a year that saw total internet-crime losses jump to $20.9 billion. Washington’s answer, the Gold Eagle clearinghouse, launched July 14 to catch AI-discovered vulnerabilities before criminals exploit them first. Fairlife’s ransomware event landed two days later.

Whether Fairlife counts as “material” under SEC rules turns on lost revenue and duration, not the ransomware label itself. Milk doesn’t stay on a shelf. Every day of suspended production is a number the SEC will eventually want in writing.

— James Okafor