Japanese beverage giant **Asahi** suffered a **cyberattack** leading to a **system failure** that severely disrupted its operations in Japan. The incident forced the company to **halt order processing, shipments, and call center services**, crippling customer support and logistics. While Asahi confirmed **no personal or customer data was leaked**, the attack caused **operational paralysis**, affecting its ability to fulfill deliveries and manage business communications. The company, which owns global brands like **Peroni and Grolsch** and operates **30 factories in Japan**, reported over **$9 billion in revenue** for H1 2025. No ransomware group claimed responsibility, and Asahi did not confirm the attack type, but the **prolonged outage**—with no estimated recovery timeline—highlights significant **business continuity risks**. The incident aligns with a rising trend of cyberattacks on beverage manufacturers, with prior ransomware strikes on breweries in Europe and Russia.
Source: https://therecord.media/asahi-japan-cyberattack-limits-shipping-call-centers
TPRM report: https://www.rankiteo.com/company/asahigroup-holdings
"id": "asa0393103093025",
"linkid": "asahigroup-holdings",
"type": "Cyber Attack",
"date": "6/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Beverage (Alcoholic & Non-Alcoholic)',
'location': 'Japan',
'name': 'Asahi Group Holdings, Ltd.',
'size': 'Large (30+ factories in Japan, $9B+ revenue '
'in H1 2025)',
'type': 'Public Company'}],
'customer_advisories': 'Yes (statement warning of service disruptions)',
'data_breach': {'data_exfiltration': 'None confirmed',
'number_of_records_exposed': '0 (as per statement)',
'personally_identifiable_information': 'None confirmed',
'type_of_data_compromised': 'None confirmed'},
'date_publicly_disclosed': '2025-MM-DD (exact date not specified; statement '
'published on a Monday)',
'description': 'Japanese beverage company Asahi experienced a cyberattack '
'causing a system failure that disrupted its ability to ship '
'orders and manage its call center. The incident affected '
'operations in Japan, including order and shipment processes, '
'call center operations, and some customer service desks. '
'Asahi reported no confirmed leakage of personal or customer '
'data. The company is investigating the cause and working to '
'restore operations, with no estimated recovery timeline. The '
"attack is limited to Asahi's operations within Japan. No "
'ransomware claim or attribution has been made as of the '
'report.',
'impact': {'brand_reputation_impact': 'Potential negative impact due to '
'service disruption (apology issued)',
'data_compromised': "None confirmed (as per Asahi's statement)",
'downtime': 'Ongoing (no estimated recovery timeline)',
'identity_theft_risk': 'None confirmed',
'operational_impact': 'Suspended order/shipment operations, '
'disrupted call center and customer service',
'payment_information_risk': 'None confirmed',
'systems_affected': ['Order and shipment systems (group companies '
'in Japan)',
'Call center operations',
'Customer service desks']},
'investigation_status': 'Active (cause under investigation)',
'references': [{'source': 'Asahi Group Holdings Statement'},
{'date_accessed': '2025-MM-DD (Tuesday morning, day after '
'disclosure)',
'source': 'Media Report (unspecified)'}],
'response': {'communication_strategy': 'Public statement issued (apology to '
'customers/partners)',
'incident_response_plan_activated': 'Yes (investigation '
'underway)',
'remediation_measures': 'Working to restore operations'},
'stakeholder_advisories': 'Public apology issued to customers and business '
'partners',
'title': "Cyberattack Disrupts Asahi's Order and Shipment Operations in Japan",
'type': 'Cyberattack (potential ransomware, unconfirmed)'}