Goodwill of Greater Grand Rapids Hit by Cyberattack, Stores Operating on Cash-Only Basis

GRAND RAPIDS, Mich. — Goodwill of Greater Grand Rapids has fallen victim to a ransomware attack that disrupted its network operations, forcing all 18 stores across Kent, Ionia, Montcalm, Mecosta, Isabella, and Ottawa counties to operate on a cash-only basis.

The nonprofit organization announced the attack on Friday, March 27, 2026, in a public statement confirming that the cyberattack impacted network resources used to run their local store systems. Goodwill immediately notified law enforcement and engaged outside cybersecurity experts to investigate the scope of the incident.

Point-of-Sale Systems Offline

The attack specifically took down the point-of-sale system used to process purchases at Goodwill locations. Despite the disruption, all stores remain open for business, but customers are now accepting cash only until the payment processing systems can be restored.

"We wish to thank our customers and community partners for their patience and support while we work through this issue," Goodwill officials said in their statement.

No Credit Card Data at Risk

One important detail for shoppers: Goodwill of Greater Grand Rapids does not store credit card data on its systems. The organization confirmed that customer payment information was not at risk during this breach, which has been a primary concern for consumers across the region.

Impact Limited to 18 Local Stores

Goodwill organizations around the country operate on separate systems, and officials confirmed that this attack has no impact on stores in other communities. The organization operates 18 stores across Kent, Ionia, Montcalm, Mecosta, Isabella, and a portion of Ottawa counties, plus an online shopping site.

"Our stores continue to be open for business, and we expect to continue cash-only transactions for the next several days," Goodwill officials stated.

Investigation Ongoing

The investigation is currently ongoing, and there is no estimated timeline for when the organization will be able to restore its full system functionality. Goodwill staff are working with police and cybersecurity experts to understand the full scope of the attack and get their point-of-sale program working again again.

The organization expects the cash-only policy to remain in place for several days as they rebuild their payment processing infrastructure. More details may emerge as cybersecurity experts continue their investigation.

Community Impact

The Goodwill of Greater Grand Rapids network serves thousands of community members throughout western Michigan, providing employment opportunities and supporting local communities. The organization has been a staple in the region for decades, operating thrift stores, recycling programs, and job training initiatives.

The cash-only limitation is expected to create some inconvenience for shoppers who prefer using cards, but the organization has asked for patience as they work through the technical challenges.