Pawtucket, Rhode Island-based toy and game company Hasbro said it detected unauthorized access to its network March 28, took some systems offline and warned temporary workarounds could delay some orders and shipments as it investigates the incident.
The company disclosed the incident in an April 1 filing with the Securities and Exchange Commission. Hasbro said it activated incident response protocols after discovering the unauthorized access, brought in third-party cybersecurity professionals and proactively took certain systems offline as a containment measure.
Hasbro did not describe the intrusion as ransomware, identify a threat actor or say customer-facing storefronts were broadly unavailable. It said the investigation is ongoing and that it is still working to determine the full scope of the impact. As of publication, no group had publicly claimed responsibility for the incident.
Hasbro said it is using business continuity plans and interim measures to continue taking orders, shipping products and running key operations. It cautioned that those measures could remain in place for several weeks and may cause some delays.
Chip in once
If this reporting helped you, a one-time tip helps cover hosting, tools and future investigations.
Support us monthly
A small monthly pledge keeps independent coverage and our reader tools online for everyone.
The timing is notable for U.S. distribution. Less than two weeks before the filing, Hasbro opened a 600,000-square-foot distribution center in Midway, Georgia, which the company said represents about 25% of its U.S. distribution footprint and supports retail partners and Hasbro Pulse, its direct-to-consumer business.
Hasbro said it is reviewing potentially affected files and will provide notifications if required by law. As of the filing, the company had not said whether data was taken or how many people, if any, may have been affected.
A prior security issue affected a Hasbro-owned business in 2019, when Wizards of the Coast said a security lapse exposed data from more than 452,000 player accounts in a public cloud storage bucket. That incident involved a separate business unit and different circumstances.
Hasbro employs about 5,000 people and operates in more than 40 countries.
Other U.S. manufacturers have also reported cyber incidents that disrupted operations in recent months. Data I/O said a 2025 ransomware attack temporarily affected shipping, receiving and manufacturing production. Masimo said a separate 2025 incident left some manufacturing facilities operating below normal levels and temporarily affected its ability to fulfill and ship customer orders on time, though it later said manufacturing was near full capacity. Bridgestone Americas, meanwhile, described its 2025 event as a limited cyber incident affecting some manufacturing facilities and said business was operating normally as the investigation continued.
For now, Hasbro said it is continuing to take orders and ship products under interim measures while the investigation continues. The company said those workarounds could remain in place for several weeks and may lead to delays.
