Asahi Confirms Nearly Two Million Individuals’ Data May Be Exposed

Asahi Confirms Nearly Two Million Individuals’ Data May Be Exposed in Ransomware Attack Source: www.theregister.com/2025/11/2… Asahi has released updated findings on the ransomware attack that struck its Japanese operations in September, acknowledging that personal data tied to nearly two million people may have been compromised. The incident first came to light on September 29, when Asahi reported a “system failure caused by a cyberattack” that disrupted ordering, shipping, and call centre operations nationwide. The Qilin ransomware group later claimed responsibility, asserting it exfiltrated 27 GB of internal data, including employee information, contracts, financial documents, and other sensitive material. According to Asahi’s latest update, attackers gained access through compromised network equipment at a Group datacentre in Japan. Ransomware was deployed the same day, encrypting data across multiple active servers and several connected PCs. The attack forced a widespread operational shutdown, including suspension of order processing, halted shipments, and disabled customer service lines. Although the datacentre was isolated within hours, the intrusion window was sufficient for the attackers to encrypt systems and extract data.