Which retail brands were impacted by the Askul cyberattack?

Multiple brands were impacted by the attack. Ryohin Keikaku, the operator of the popular Muji retail chain, suspended its entire domestic online shopping service at 9:00 PM on October 19, as Muji outsources deliveries of some items to an Askul subsidiary. The Loft Company also reported that its website has been rendered non-operational due to the logistics disruption.

When did the Askul ransomware attack occur?

The ransomware attack began on the morning of October 19, 2025. Askul issued a statement on Sunday, October 19th, and affected retailers like Muji suspended services at 9:00 PM that same day.

What data was exposed in the Askul ransomware attack?

The types of exposed data and number of affected individuals have not been disclosed by Askul Corporation.

What is Askul doing to recover from the ransomware attack?

In its statement issued on October 19th, Askul apologized to affected parties and stated the company is working to restore the system as quickly as possible. However, Askul has not provided a timeline for recovery.

How did the Askul attack affect Muji's operations?

Ryohin Keikaku, the operator of the Muji retail chain, suspended its entire domestic online shopping service at 9:00 PM on October 19, 2025. Muji outsources deliveries of some items to an Askul subsidiary, which left the retailer with no choice but to halt e-commerce operations due to the ransomware attack.

Incident

Ransomware attack on Askul disrupts Japanese retailers Muji and Loft

published: Oct. 20, 2025

Learn More

Japanese e-commerce and logistics company Askul Corporation was hit by a ransomware attack that has crippled its operations and forced multiple major retail brands to suspend their online services. The cyberattack began on the morning of October 19, 2025, and caused widespread disruption across Japan's retail sector.

The ransomware attack forced immediate shutdown of all three of the company's e-commerce platforms: "ASKUL" for office supplies targeting business customers, "LOHACO" for household sundries serving individual consumers, and "Soloel Arena" for corporate purchasing. The company had tocancel all orders that were pending dispatch at the time of the attack.

The attack impacted multiple brands. Ryohin Keikaku, the operator of the popular Muji retail chain, suspended its entire domestic online shopping service at 9:00 PM on Sunday, October 19. Muji outsources deliveries of some items to an Askul subsidiary. That left the retailer with no choice but to halt e-commerce operations. Similarly, The Loft Company reported that its website has been rendered non-operational due to the logistics disruption caused by the Askul attack.

The types of exposed data and number of affected individuals is not disclosed.

In its statement issued on Sunday 19th of October, Askul apologized to affected parties, stating: "We sincerely apologize for the significant inconvenience and concern this incident has caused to our customers and all other stakeholders." The company is working to restore the system as quickly as possible but has not provided a timeline for recovery.

Update - As of 30th of October, the RansomHouse gang claimed responsibility for the breach and allege they have stolen large volume of data.

As of 13th of December 2025, Askul reports that the attack compromised approximately 740,000 customer and employee data records. The company has reported the breach to authorities, contacted affected parties, and removed or reinstalled systems on infected devices.

Ransomware attack on Askul disrupts Japanese retailers Muji and Loft

Read More
Money Message ransomware gang claims attack on Anna …
Harrods latest UK retailer to be hit by …
Parathon by JDA eHealth Systems reports data breach
Slovakia's Land Registry Office hit by cyberattack, shuts …
Libraries in Solano County, California hit by cyberattack, …