In August 2024, ransomware disabled the Enterprise Resource Planning (ERP) system at Stoli Group USA — a 90-year-old spirits brand carrying $84 million in secured debt against $15 million in annual revenue. Accounting went manual. Lenders declared default. Five months later: Chapter 11. Fifteen months after that: Chapter 7 liquidation. Fifty American jobs disappeared and the brand’s US subsidiary ceased operations entirely. The attack was not sophisticated. Every warning sign was visible before it happened — in public filings, loan documents, trade press, and geopolitical reporting that any qualified outside advisor would have flagged. This was not a failure of intelligence. It was a failure of formal attention. Stoli Group USA is not an outlier. A Mastercard 2025 survey of over 5,000 SMB owners found that almost one in five who experienced a cyberattack went bankrupt or closed. Those organizations did not make the news. They just closed — and the only people who knew why were the owners and the employees who never got called back. This study identifies the six warning signs present before the attack, models a focused external risk engagement — typically $35K to $40K depending on organization size, technology complexity, and the number of leadership stakeholders involved — that could have redirected the outcome, and asks the question every mid-market organization should be asking: not whether you face similar risks, but whether anyone has formally looked.
Risk Study The Stoli Group USA Case
2026-05-09
Get the full document
$295
One-time purchase. Your PDF is delivered instantly the moment payment is confirmed
- Full document report (PDF)
- Lifetime access - yours to keep
- Written by cybersecurity professionals
Secure checkout via Stripe · All major cards accepted · Instant delivery
More Publications
2026-05-31
Breach by Proxy The Canvas Breach, 275 Million Exposed Users, and the Third-Party Risk Gap Higher Education Can No Longer Ignore
In late April 2026, ShinyHunters breached the Instructure Canvas environment, the learning management system used by approximately 9,000 higher education institutions worldwide, exfiltrating an estimated 3.65 terabytes of data including usernames, email addresses, enrollment records, and private messages between students
2026-05-09
Risk Advisory - FCA Recoveries Tripled in 2025
Working Title: Risk Advisory — Healthcare Related False Claims Act (FCA) Recoveries More than Tripled in 2025, Signaling Clear Enforcement Surge for 2026 Risk: Increased False Claims Act (FCA) Healthcare Related Enforcement Impact: If unaddressed, a single enforcement action can trigger
2026-05-09
Risk Study The Stoli Group USA Case
In August 2024, ransomware disabled the Enterprise Resource Planning (ERP) system at Stoli Group USA — a 90-year-old spirits brand carrying $84 million in secured debt against $15 million in annual revenue. Accounting went manual. Lenders declared default. Five months
2026-03-23
Artificial Intelligence in the Executive Suite: A Risk Intelligence Assessment for Senior Leaders
Artificial intelligence has moved beyond experimental deployment into the operating rhythm of executive leadership. AI-generated outputs now directly inform board presentations, strategic planning cycles, capital allocation decisions, and enterprise risk assessments across sectors. This shift has created a new category
2026-03-15
Risk Advisory Iranian Cyber Re taliat ion Risks to Small and Mid‑Sized Businesses
Following US and Israeli strikes on Iran in February 2026, intelligence firms and government cyber centers have observed a marked uptick in activity from Iranian state-aligned cyber units and a swarm of pro-Iranian hacktivist groups claiming retaliatory operations. Public bulletins
2026-03-06
Risk Advisory - Operating in a Fractured World: Global Political & Socioeconomic Instability
AdvisoryExecutive Summary Small and midsize businesses (SMBs) are entering 2026 in an “age of competition” where overlapping shocks, more frequent conflicts, rising geo-economic confrontation, and a fraying rules-based order are now the baseline, not the exception. Tariffs, export controls, and