{"id":3144,"date":"2025-10-08T01:55:39","date_gmt":"2025-10-08T01:55:39","guid":{"rendered":"https:\/\/ft365.org\/index.php\/2025\/10\/08\/qilin-ransomware-gang-claims-asahi-cyber-attack\/"},"modified":"2025-10-08T01:55:39","modified_gmt":"2025-10-08T01:55:39","slug":"qilin-ransomware-gang-claims-asahi-cyber-attack","status":"publish","type":"post","link":"http:\/\/ft365.org\/index.php\/2025\/10\/08\/qilin-ransomware-gang-claims-asahi-cyber-attack\/","title":{"rendered":"Qilin Ransomware Gang Claims Asahi Cyber-Attack"},"content":{"rendered":"<div>\n<p><img decoding=\"async\" src=\"https:\/\/ft365.org\/wp-content\/uploads\/2025\/06\/localimages\/32483240-27a8-4f36-ac60-9d465c05a5d5.jpg?width=64&#038;height=64&#038;mode=crop&#038;scale=both&#038;format=webp\" alt=\"Photo of James Coker\" loading=\"lazy\"><\/p>\n<\/div>\n<div id=\"cphContent_pnlArticleBody\">\n<div id=\"layout-3c38965b-307e-4a7c-9514-5cbcf3786ea1\" data-layout-id=\"2\" data-edit-folder-name=\"text\" data-index=\"0\">\n<p>The Qilin ransomware group has claimed responsibility for the cyber-attack on Japan\u2019s Asahi Group and says it has stolen sensitive data from the firm.<\/p>\n<p>Consumer website Comparitech revealed that the notorious actor had listed Asahi on its data leak site on October 7, claiming to have stolen 27 GB of files from the company.<\/p>\n<p>The data allegedly includes personal details of employees, as well as sensitive Asahi business information. This includes financial documents, budgets, contracts, plans and development forecasts.<\/p>\n<\/p><\/div>\n<figure id=\"layout-5173a2cf-6edf-47cb-b474-fcc2d40e81cd\" data-layout-id=\"4\" data-edit-folder-name=\"image\" data-index=\"1\"><img decoding=\"async\" src=\"http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/localimages\/98b2f276-2f5b-4c34-861d-c4142df8ede7.jpg\" alt=\"Qilin\u2019s claim to have stolen data held by Asahi on its data leak site. Source: Comparitech\"><figcaption>Qilin\u2019s claim to have stolen data held by Asahi on its data leak site. Source: Comparitech<\/figcaption><\/figure>\n<div id=\"layout-f73e9f78-5c9b-434a-afa8-0c2bf25ca749\" data-layout-id=\"2\" data-edit-folder-name=\"text\" data-index=\"2\">\n<p>Asahi has not responded to Qilin\u2019s claims at the time of writing.<\/p>\n<p>The update comes just days after Asahi confirmed it had fallen victim to a ransomware attack, which had resulted in an \u201cunauthorized transfer of data\u201d from its servers.<\/p>\n<p>The attack has caused significant operational disruption at the brewer, with order and shipment operations in Japan immediately suspended as the company mounted its response. Additionally, call center operations, including customer service desks, were suspended.<\/p>\n<p>Asahi is in the process of resuming operations, including launching manual order and shipping processes.<\/p>\n<p>The Tokyo-based firm owns a range of well-known global drinks brands, both alcoholic and non-alcoholic, as well as food products.<\/p>\n<p>Its five beer brands are Asahi, Peroni, Kozer, Pilsner Urquell and Grolsch. It also owns UK-based brewery Fullers.<\/p>\n<h2><strong>Qilin Leading the Way in Ransomware<\/strong><\/h2>\n<p>The Qilin gang has emerged as the most prolific ransomware actor in an increasingly crowded marketplace in recent months.<\/p>\n<p>ZeroFox\u2019s <em>Q3 2025 Ransomware Roundup<\/em> report found that Qilin claimed responsibility for the highest number of attacks in the quarter, at 227.<\/p>\n<p>NCC Group reported that Qilin made up 16% of all ransomware attacks in August 2025, making it the most active threat group in the month.<\/p>\n<p>According to Comparitech, Qilin has taken credit for three other confirmed ransomware attacks on Japanese companies this year: Shinko Plastics in June, Nissan Creative Box in August and Osaki Medical in August.<\/p>\n<p><em>Read now: Qilin Claims Ransomware Attack on Mecklenburg Schools<\/em><\/p>\n<p>The ransomware-as-a-service (RaaS) operator provides ransomware tools and infrastructure to affiliates, taking a 15\u201320% share of the ransom payments.<\/p>\n<p>It explicitly instructs its affiliates not to target systems located in countries part of the Commonwealth of Independent States (CIS), including Russia and Belarus.<\/p>\n<p>It reportedly operates a technically mature infrastructure, with custom-built malware written in Rust and C for cross-platform attacks, including Windows, Linux and ESXi systems.<\/p>\n<p><em>Image credit: Shaun in Japan \/ Shutterstock.com<\/em><\/p>\n<\/p><\/div>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>The Qilin ransomware group has claimed responsibility for the cyber-attack on Japan\u2019s Asahi Group and says it has stolen sensitive data from the firm. Consumer website Comparitech revealed that the notorious actor had listed Asahi on its data leak site on October 7, claiming to have stolen 27 GB of files from the company. The<\/p>\n","protected":false},"author":2,"featured_media":3145,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-3144","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized"],"featured_image_urls":{"full":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e.jpg",300,300,false],"thumbnail":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e-150x150.jpg",150,150,true],"medium":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e.jpg",300,300,false],"medium_large":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e.jpg",300,300,false],"large":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e.jpg",300,300,false],"1536x1536":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e.jpg",300,300,false],"2048x2048":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e.jpg",300,300,false],"morenews-featured":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e.jpg",300,300,false],"morenews-large":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e.jpg",300,300,false],"morenews-medium":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e.jpg",300,300,false],"crawlomatic_preview_image":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/10\/3144-2ecfcf9f-c23e-4168-a10e-59cbe1ee074e-146x146.jpg",146,146,true]},"author_info":{"display_name":"henry","author_link":"http:\/\/ft365.org\/index.php\/author\/henry\/"},"category_info":"<a href=\"http:\/\/ft365.org\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","_links":{"self":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/3144","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/comments?post=3144"}],"version-history":[{"count":0,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/3144\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media\/3145"}],"wp:attachment":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media?parent=3144"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/categories?post=3144"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/tags?post=3144"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}