Cyberattack Hits Nichirei, Japan's Frozen Food Giant, Putting Personal Data at Risk
A July 13 attack knocked out warehouses and shipping lines across Japan. Nichirei says personal information may have been stolen, and a regulator report has already been filed.

Key points
- Nichirei, one of Japan's largest frozen food companies, suffered a cyberattack on July 13, 2025, forcing it to shut down computer systems the same day.
- The disruption hit refrigerated warehouses and food shipping operations run by Nichirei's 80 global subsidiaries.
- Nichirei confirmed that targeted servers stored personal information and filed an initial report with Japan's Personal Information Protection Commission on the possibility of a data leak.
- The company announced a gradual restart of operations beginning July 18, but gave no date for full recovery.
- Nichirei is withholding details of the attack type, so it is not yet known whether a ransomware group, which would be criminals who lock a company's files and demand payment, was responsible.
Nichirei is the kind of company most people outside Japan have never heard of, but whose products quietly fill freezer aisles and restaurant kitchens across the country. One attack on a Thursday afternoon and the cold chain, meaning the unbroken series of refrigerated storage and transport that keeps frozen food safe, started to crack.
On July 13, criminals broke into Nichirei's servers. The company pulled the plug on its own systems almost immediately to contain the damage. That decision stopped the attack from spreading further, but it also stopped warehouses from processing stock and halted shipping for Nichirei Foods. Restaurant chains, retailers, and home delivery services all felt it.
Could customers' personal details have been stolen?
Yes, that is a real possibility. Nichirei confirmed that some of the systems hit by the attackers held personal information. The company has already filed a preliminary report with Japan's Personal Information Protection Commission, the government body that oversees how businesses handle people's data, flagging the potential for a leak. That report does not confirm a leak happened; it is a legal requirement to notify the regulator early when there is a credible risk.
If you are a Nichirei customer or have ever used a service that Nichirei handles logistics for, watch your inbox for a direct notification from the company. If one arrives, take it seriously. Change any password you reused across accounts and watch for suspicious emails pretending to be from Nichirei.
The failure mode here is a familiar one. A company running refrigerated logistics across 80 subsidiaries carries a huge IT footprint, and each subsidiary is a potential entry point. In practice, segmenting those networks so that a breach in one system cannot reach servers holding customer data is genuinely hard. It is also the work that gets deprioritised until a postmortem forces the conversation.
Nichirei is saying little about how the attackers got in, which is a reasonable precaution during a live investigation. SecurityWeek first reported the company's announcement. Whether this is a ransomware group or a data-extortion crew, meaning criminals who steal files and threaten to publish them rather than just encrypt them, remains unknown.
Restarting a cold-chain operation is not like rebooting a website. Temperatures, inventory counts, and delivery schedules all need to be trusted before food safety can be guaranteed.
One thing the post-mortem will say: incident response plans need a 'freezer-safe' mode from day one.



