Japan’s largest brewer, Asahi Group Holdings, has revealed that personal data may have been stolen in the ransomware attack that recently forced it to suspend beer production across much of the country.
The company was forced to shut down operations at most of its 30 factories following a major cyber-attack late last month, disrupting its production lines, shipment systems, and accounting operations. While all facilities have now resumed partial operations, Asahi confirmed that its computer systems remain largely offline. Employees are currently handling orders manually, using pen, paper, and fax machines.
In a statement released on Tuesday, Asahi said it was investigating the full extent of the breach and the potential theft of personal data. “As we continue investigating the extent and details of the impact, focusing on the systems targeted in the recent attack, we have identified the possibility that personal information may have been subject to unauthorised data transfer,” the company said.
The brewer added that it would promptly notify affected individuals if the investigation confirms any data compromise and take necessary steps in line with Japan’s data protection laws. The company’s Emergency Response Headquarters is working with cybersecurity experts to restore systems and strengthen defences.
Asahi has apologised to customers and partners for the disruption, saying it “deeply regrets any difficulties caused by the incident.”
The company, which also owns global beer brands such as Peroni, Grolsch, and Pilsner Urquell, said the cyber-attack only affected its operations in Japan, which account for roughly half of its global sales. Its overseas businesses, including Fuller’s Brewery in the UK, were not impacted.
Asahi also announced that it would delay the publication of its third-quarter financial results due to the ongoing disruption. The report, originally scheduled for release shortly after the October–December quarter, will be postponed by more than 45 days, with a new date dependent on system recovery progress.
The Russia-based ransomware group Qilin has claimed responsibility for the attack. The same group has previously targeted several major organisations, including the UK’s National Health Service.
The Asahi breach adds to a growing list of major cyber incidents affecting global corporations this year. In the UK, companies such as Jaguar Land Rover, Marks & Spencer, and Co-op have all experienced significant operational disruptions linked to cyber-attacks.
According to the UK’s National Cyber Security Centre, there has been a record increase in “nationally significant” attacks over the past year, averaging four major incidents each week. The agency has urged businesses worldwide to take proactive steps to bolster their cybersecurity measures and protect critical data systems.
