Asahi Faces Major Cybersecurity Breach: 1.5 Million Customers at Risk

In a troubling revelation, Japanese beer giant Asahi has confirmed that a significant cyber-attack in September may have compromised the personal information of over 1.5 million customers. The company announced its findings on November 26, 2025, detailing the impact of a ransomware attack that severely disrupted its operations across factories in Japan.

The ransomware incident, attributed to the notorious group Qilin, led to a complete operational shutdown at Asahi’s facilities. Employees were forced to revert to manual processes, taking orders with pen and paper as the attack crippled digital systems. In its statement, Asahi disclosed that personal details of customers who had interacted with its customer service centers were likely exposed. The company is in the process of notifying those affected and has also decided to delay the release of its full-year financial results to concentrate on managing the aftermath of the attack.

While Asahi has not disclosed specific details about the attackers or their demands, the investigation revealed that a disruption was detected at one of its data centers on September 29. Although the company quickly isolated the affected systems, the attackers had already infiltrated the network, encrypting data and deploying ransomware that restricts access until a ransom is paid.

Asahi’s preliminary findings indicate that personal information such as names, gender, addresses, and contact details of approximately 1.52 million customers may be at risk. Additionally, data belonging to around 107,000 current and former employees, along with 168,000 family members, was also potentially exposed. The company reported that the names and contact information of 114,000 external contacts who had communicated with Asahi were linked to the breach. Importantly, credit card details were not included in the leaked data.

Despite the severity of the situation, Asahi has stated that it has found no evidence of the data being released publicly as of yet. The company emphasized that the impact of the cyber-attack is confined to systems managed within Japan and that its operations in Europe, which include well-known brands like Peroni and Fuller’s Brewery in the UK, remain unaffected.

In the wake of the attack, retailers in Japan have raised concerns about potential shortages of beer and other beverages, as Asahi grapples with the challenges of restoring its systems and reconfiguring its network. After nearly two months of containment efforts, the company is now focused on rebuilding its operations while ensuring the security of its data and the trust of its customers.

Asahi’s experience serves as a stark reminder of the vulnerabilities that even major corporations face in an increasingly digital world. As businesses continue to navigate the complexities of cybersecurity, the importance of robust data protection measures has never been clearer.