A CEO’s Lessons On Surviving A Cyberattack

Cybersecurity is often discussed in terms of tools and technology. But some of the most valuable lessons come from leaders who have lived through an attack firsthand.

At the NAW Executive Summit in Washington DC, I sat down with Rob Onorato, CEO of Shorr Packaging, a leading packaging and supply chain solutions company based in Chicago. Our conversation turned to one of the most challenging moments early in his tenure as CEO. A cyberattack that arrived without warning and tested his team in ways no onboarding plan could prepare for.

It was supposed to be an ordinary morning. The leadership team relied on daily operational reports to get a quick read on how the business was running. That morning, those reports never arrived. At first it seemed like a minor technical issue. But as the team investigated, something far more serious emerged. Rob received a direct message from the attacker confirming they had taken control of the company’s systems. An ordinary day had become a crisis.

Responding Under Pressure

The team moved quickly. IT began investigating while leadership contacted their cybersecurity insurance provider. A forensic team was brought in to assess the breach. The disruption lasted about a week. During that time, Shorr had to find ways to keep serving customers while systems were carefully rebuilt.

With digital tools unavailable, the team switched to manual processes. Orders were taken on paper. Teams coordinated with customers and suppliers by phone. It was not efficient, but it kept the business moving forward.

This highlights something that gets lost in most cybersecurity conversations. Technology makes businesses faster, but resilience comes down to people. When systems fail, teams must adapt and find a way through.

The leadership team also made an important decision about communication. Rather than hide the situation, they chose transparency and told customers and suppliers what had happened, reassuring them that orders would continue to be fulfilled. What customers remember is not always just that a cybersecurity incident happened. It is how the company responded.

A Growing Threat

This story resonates personally. A few months ago at DCKAP, we experienced a security incident affecting user credentials. It was a sharp reminder that no organization is too small to be targeted. We responded by enforcing multi-factor authentication, resetting passwords, tightening access controls, and onboarding an external cybersecurity partner. The experience reinforced the idea that security is an ongoing discipline rather than a one-time investment.

The broader threat landscape reflects this urgency. Manufacturing and distribution companies are increasingly targeted because operational downtime creates immediate financial pressure. In a recent report, 30% of respondents validated that cybersecurity remains a top 2 concern for manufacturers. 

When systems go down, production stops, orders don’t ship, and the disruption moves through the entire supply chain. Rob’s goal during that week was simple. Keep the business running so customers could keep running theirs.

Cybersecurity protects something far more important than data or infrastructure. It protects a company’s ability to serve its customers. Technology is the foundation. Trust is what’s built on top of it.

Thanks for reading.

Karthik Chidambaram.