Nobu Restaurant Group Data Breach Linked to Akira Ransomware Attack

Nobu Restaurant Group Holding Company LLC, the entity behind the global Japanese restaurant chain, reports a data breach to the Texas Attorney General on April 17, 2026. 

The incident is linked to a ransomware attack claimed by the Akira ransomware group, published on their dark web leak site in November 2025. The threat actors assert they exfiltrated approximately 71 gigabytes of sensitive data from the company's internal network.

The Akira group posted the stolen archives on the Tor network on November 5, 2025, claiming to have bypassed security controls to access Nobu's backend infrastructure.

The compromised data allegedly includes:

• Full names and Social Security numbers
• Driver’s license numbers and government-issued IDs (passports, state ID cards)
• Financial information including account, credit, and debit card numbers
• Protected Health Information (PHI) such as medical and health insurance details
• Confidential company files, non-disclosure agreements, and internal financial records

The number of affected individuals is not disclosed. At least 280 Texas residents are impacted.

Nobu started a forensic investigation and began notifying affected individuals via U.S. Mail on April 17, 2026.