Asahi Group Hit by Qilin Ransomware, Data Stolen
Asahi Group, a global drinks and food conglomerate, has fallen victim to a ransomware attack. The cyber incident, confirmed by Asahi earlier today, resulted in an unauthorized data transfer from its servers. The Qilin ransomware group has claimed responsibility for the attack.
The Qilin group operates a RaaS (Ransomware as a Service) model, providing tools and infrastructure to affiliates in exchange for a 15-20% share of ransom payments. This attack on Asahi is not an isolated incident. Qilin has targeted three other Japanese companies this year: Shinko Plastics, Nissan Creative Box, and Osaki Medical.
The attack on Asahi caused significant operational disruption. Order and shipment operations were suspended, and customer service desks were unavailable. The group claims to have stolen 27 GB of data, including personal employee details and sensitive business information. Asahi, which owns popular brands like Asahi, Peroni, and Grolsch, has not responded to Qilin's claims at the time of writing.
Asahi is currently working to resume operations, including manual order and shipping processes. The Qilin ransomware group remains one of the most prolific actors, claiming responsibility for 227 attacks in Q3 2025 and 16% of attacks in August 2025. Asahi and other affected companies are urged to take necessary precautions to prevent future incidents.
