The Big Sip
Image: BBC
The take: Supply chains break more easily than companies admit. Asahi's complete shutdown shows how one cyberattack can paralyze a third of Japan's beer market.
What happened: Asahi Group Holdings halted all production at 7:00 AM on September 29, 2025, after cyberattackers disabled all 30 of its domestic factories. Operations remain frozen—no orders, shipping, customer service, or recovery timeline.
Why it matters: Attackers now target operational systems rather than data theft because production shutdowns necessitate immediate crisis response and result in massive losses. The Co-op Group lost £80 million over six months after an April attack. Arla Foods and Oettinger faced similar incidents this year. Food and beverage companies have become prime targets.
What to watch: Whether a ransomware group claims responsibility in the next 48 hours, and how long Japan's restaurant and retail distribution holds before shelves start looking thin. Asahi says no data was stolen, which means attackers wanted disruption, not information.
Reciepts
[Report] Asahi Group Holdings official notice (29 Sept 2025):
• https://www.marketscreener.com/news/asahi-notice-of-system-failure-due-to-cyberattack-ce7d5bdbd988f323
•https://www.publicnow.com/view/C7C9BB77C58B1D427A7757DC0AFDB6D2914FF69D
[Analysis] BleepingComputer coverage (30 Sept 2025):
• https://www.bleepingcomputer.com/news/security/japans-largest-brewer-suspends-operations-due-to-cyberattack/
[Report] Bloomberg (30 Sept 2025):
• https://www.bloomberg.com/news/articles/2025-09-29/cyberattack-disrupts-asahi-group-suspending-some-shipments
Japan beer supply just learned “single point of failure” isn’t a tasting note.