Nobu Restaurant Group Hit by Akira Ransomware Attack, Exposing Sensitive Data
Shamis & Gentile P.A., a class action law firm specializing in data breaches, is investigating a ransomware attack on Nobu Restaurant Group Holding Company, LLC, a global hospitality brand co-founded by Chef Nobu Matsuhisa, Robert De Niro, Meir Teper, and Drew Nieporent. The U.S.-based company, employing over 400 people, disclosed the breach to the Texas Attorney General on April 17, 2026, following an attack claimed by the Akira ransomware group on November 5, 2025.
The threat actors asserted they exfiltrated 71 GB of sensitive data, including employee and owner records such as passports, driver’s licenses, Social Security numbers, financial documents, and confidential files. The breach impacted at least 280 individuals in Texas, who were notified via U.S. Mail.
Exposed information includes:
- Full names
- Social Security numbers
- Driver’s license and government-issued ID numbers
- Financial data (account and card numbers)
- Medical and health insurance details
The firm is evaluating potential compensation claims for affected individuals as part of a class action investigation. Nobu Hospitality has not publicly detailed remediation efforts or further impact assessments.
Source: https://www.claimdepot.com/investigations/nobu-data-breach-2026
Nobu Restaurants cybersecurity rating report: https://www.rankiteo.com/company/nobu-restaurant-group
"id": "NOB1776458040",
"linkid": "nobu-restaurant-group",
"type": "Ransomware",
"date": "4/2026",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '280+ individuals in Texas',
'industry': 'Restaurant/Hospitality',
'location': 'U.S.',
'name': 'Nobu Restaurant Group Holding Company, LLC',
'size': '400+ employees',
'type': 'Hospitality'}],
'customer_advisories': 'U.S. Mail notifications to affected individuals',
'data_breach': {'data_exfiltration': 'Yes',
'file_types_exposed': ['Passports',
'Driver’s licenses',
'Government-issued IDs',
'Financial documents',
'Confidential files'],
'personally_identifiable_information': ['Full names',
'Social Security '
'numbers',
'Driver’s license '
'numbers',
'Government-issued ID '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Financial data',
'Medical and health insurance '
'details']},
'date_detected': '2025-11-05',
'date_publicly_disclosed': '2026-04-17',
'description': 'Nobu Restaurant Group Holding Company, LLC, a global '
'hospitality brand, was targeted by the Akira ransomware '
'group, resulting in the exfiltration of 71 GB of sensitive '
'data, including employee and owner records such as passports, '
'driver’s licenses, Social Security numbers, financial '
'documents, and confidential files.',
'impact': {'data_compromised': '71 GB of sensitive data',
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'investigation_status': 'Ongoing (Class action investigation)',
'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'Akira'},
'references': [{'source': 'Texas Attorney General Breach Notification'}],
'regulatory_compliance': {'legal_actions': 'Class action investigation by '
'Shamis & Gentile P.A.',
'regulatory_notifications': 'Texas Attorney '
'General'},
'response': {'communication_strategy': 'U.S. Mail notifications to affected '
'individuals'},
'threat_actor': 'Akira ransomware group',
'title': 'Nobu Restaurant Group Hit by Akira Ransomware Attack',
'type': 'Ransomware'}