Asahi Group Holdings Recovers From Qilin Ransomware Attack

Asahi Group Holdings has fully restored its logistics systems following a large-scale ransomware attack that disrupted the delivery of its flagship products ^[1].

The incident highlights the vulnerability of critical supply chains to cyber warfare. Because Asahi relies on a complex national network to distribute perishable goods like beer, a digital failure directly resulted in physical inventory shortages across Japan ^[1], ^[2].

The disruption began in September 2025 ^[1]. The attack was carried out by the hacker group known as Qilin ^[4], ^[5]. This breach targeted the company's national logistics network, causing systems to stop and leading to out-of-stock situations for the company's primary beer brands ^[1], ^[2].

Company officials managed the crisis over a period of approximately two months ^[3]. While some reports indicated that logistics stopped entirely ^[2], other accounts suggested the outages were concentrated at specific hubs ^[2]. Despite these variations in scope, the impact on the consumer market was significant.

The company worked to stabilize its operations throughout the winter. Logistics were fully restored by February 2026 ^[1], ^[2]. This recovery follows a broader trend of cyber threats in the region. The Qilin group was linked to 22 separate victims within Japan during 2025 ^[5].

Asahi has since focused on returning to normal operations. The recovery process required a comprehensive overhaul of the affected logistics systems to ensure that the national distribution network could withstand similar future incursions ^[1], ^[2].