{"id":3687,"date":"2025-11-29T05:27:06","date_gmt":"2025-11-29T05:27:06","guid":{"rendered":"https:\/\/ft365.org\/index.php\/2025\/11\/29\/asahi-confirms-1-5-million-customers-affected-in-major-cyber-attack\/"},"modified":"2025-11-29T05:27:06","modified_gmt":"2025-11-29T05:27:06","slug":"asahi-confirms-1-5-million-customers-affected-in-major-cyber-attack","status":"publish","type":"post","link":"https:\/\/ft365.org\/index.php\/2025\/11\/29\/asahi-confirms-1-5-million-customers-affected-in-major-cyber-attack\/","title":{"rendered":"Asahi Confirms 1.5 Million Customers Affected in Major Cyber-Attack"},"content":{"rendered":"<div id=\"cphContent_pnlArticleBody\" data-layout-id=\"2\" data-edit-folder-name=\"text\" data-index=\"0\">\n<p>Brewing giant Asahi said that almost two million people could have seen their personal data exposed after it suffered a major cyber-attack in September 2025.<\/p>\n<p>In a new advisory, published on November 27, Asahi shared the early results of the investigation into the cyber-attack that led to temporary operation suspensions in September and October.<\/p>\n<p>The probe concluded that the personal data of approximately 1.914 million individuals, including 1.525 million customers, was or may have been exposed. The remaining affected individuals include current and former employees of Asahi Group Holdings, their family members and \u201cexternal contacts who received congratulatory or condolence telegrams\u201d from the company.<\/p>\n<p>Potentially exposed data include:<\/p>\n<ul>\n<li>Names<\/li>\n<li>Genders<\/li>\n<li>Dates of birth<\/li>\n<li>Postal Addresses<\/li>\n<li>Email addresses<\/li>\n<li>Phone numbers<\/li>\n<\/ul>\n<p>Asahi confirmed that credit card information has not been exposed.<\/p>\n<h2><strong>Expected Further Operation Disruptions <\/strong><\/h2>\n<p>Asahi said it spent two months investigating the breach &#8211; including conducting root cause analysis and integrity checks \u2013, containing the ransomware, restoring systems and strengthening security to prevent future incidents.<\/p>\n<p>Atsushi Katsuki, President and Group CEO of Asahi Group Holdings, publicly apologized for the difficulties caused by the disruptions.<\/p>\n<p>\u201cWe are making every effort to achieve full system restoration as quickly as possible, while implementing measures to prevent recurrence and strengthening information security across the group. Regarding product supply, shipments are resuming in stages as system recovery progresses,\u201d he added.<\/p>\n<p>Kevin Marriott, senior manager of cyber at Immersive, emphasized that the theft of customer data \u201conly adds further pressure that the Asahi team is facing, in addition to the possibility that operations may not be fully restored until February.\u201d<\/p>\n<h2><strong>Potential Hit to Asahi\u2019s 2025 Revenues<\/strong><\/h2>\n<p>Asahi Group Holdings is a giant beer making conglomerate that owns several brands, including a range of Asahi-branded beers, Italian beer Peroni, Czech beer Pilsner Urquell and Hungarian beer Dreher.<\/p>\n<p>The group\u2019s global disclosed a 2024 global revenue of \u00a52939.4bn ($1880bn) \u2013 a 2.1% increase compared to 2023.<\/p>\n<p>The potential impact of the incident on Asahi\u2019s financial results for fiscal year 2025 is currently under review.<\/p>\n<p>Shankar Haridas, head of UK and Ireland at ManageEngine, noticed that Asahi had already acknowledged in its 2024 report that such an attack could interrupt business and was reviewing its security posture.<\/p>\n<p>\u201cThat reflects a wider truth that companies are investing more than ever in digital defences, yet adversaries continue to outpace them, exploiting weak links in supply chains or breaking in through trusted partners,\u201d he added.<\/p>\n<h2><strong>Qilin Ransomware Group Claimed the Cyber-Attack<\/strong><\/h2>\n<p>Asahi temporarily suspended its operations in Japan in late September following a \u201csystem failure.\u201d Disruptions included order and shipment, call centers and customer service desks.<\/p>\n<p>The beer giant later confirmed the incident was due to a ransomware attack which resulted in an \u201cunauthorized transfer of data\u201d from its servers.<\/p>\n<p>It continued to experience operation disruptions throughout October. The company also postponed the launch of a new product scheduled to be released in October due to the cyber-attack.<\/p>\n<p>On October 7, consumer website Comparitech revealed that the Qilin ransomware group had listed Asahi on its data leak site, claiming to have stolen 27 GB of files from the company.<\/p>\n<p>Qilin is known for double-extortion attacks, leaking data when it has not received payment from its victims.<\/p>\n<p>\u201cCustomers should therefore keep an eye on updates as the situation evolves and be cautious of any unsolicited communication over the coming months,\u201d Immersive\u2019s Marriot, warned.<\/p>\n<p>Jason Revill, global security practice technology lead at Avanade, added that the Asahi cyber-attack \u201chighlights a growing risk in operational technology (OT)\/information technology (IT) coverage networks, and why Zero Trust principles are critical for every organization, no matter the size or industry.\u201d<\/p>\n<p>\u201cThe compromise seems to have started with network equipment at one site, impacting the OT environment and potentially expanding into IT systems, wherein customer data was exposed,\u201d he explained.<\/p>\n<p><em>Photo credits:\u00a0Tom Eversley \/\u00a0Hendrick Wu \/ Shutterstock<\/em><\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Brewing giant Asahi said that almost two million people could have seen their personal data exposed after it suffered a major cyber-attack in September 2025. In a new advisory, published on November 27, Asahi shared the early results of the investigation into the cyber-attack that led to temporary operation suspensions in September and October. The<\/p>\n","protected":false},"author":2,"featured_media":3688,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-3687","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized"],"featured_image_urls":{"full":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432.jpg",300,300,false],"thumbnail":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432-150x150.jpg",150,150,true],"medium":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432.jpg",300,300,false],"medium_large":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432.jpg",300,300,false],"large":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432.jpg",300,300,false],"1536x1536":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432.jpg",300,300,false],"2048x2048":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432.jpg",300,300,false],"morenews-featured":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432.jpg",300,300,false],"morenews-large":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432.jpg",300,300,false],"morenews-medium":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432.jpg",300,300,false],"crawlomatic_preview_image":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/11\/3687-664be741-4e95-4b67-957c-5ac2f619d432-146x146.jpg",146,146,true]},"author_info":{"display_name":"henry","author_link":"https:\/\/ft365.org\/index.php\/author\/henry\/"},"category_info":"<a href=\"https:\/\/ft365.org\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","_links":{"self":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/3687","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/comments?post=3687"}],"version-history":[{"count":0,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/3687\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media\/3688"}],"wp:attachment":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media?parent=3687"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/categories?post=3687"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/tags?post=3687"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}