Ransomware victim disclosure
← All victimsASKUL
Claimed by Ransomhouse · listed 9 months ago
Status timeline
- ListedOct 30, 2025
- Data leakeddate unknown
At a glance
- Group
- Ransomhouse
- Status
- Data leaked
- Country
- Japan
- Sector
- Consumer Services
- Listed on leak site
- Oct 30, 2025
- Data size
- 743 GB
- Ransom demanded
- $740
About the victim
AI dossier — public-source company profileASKUL Corporation is a major Japanese B2B e-commerce company operating at www.askul.co.jp, specializing in next-day delivery of office supplies, medical/care products, industrial materials, IT equipment, and consumables to businesses across Japan. The company serves small and medium enterprises primarily through its online platform and catalogue service, with headquarters in Koto-ku, Tokyo. ASKUL is a publicly listed company (Tokyo Stock Exchange) with annual revenues in the hundreds of billions of yen.
- Industry
- B2B E-Commerce / Office & Industrial Supplies Distribution
- Address
- 東京都江東区 (Koto-ku, Tokyo, Japan, ~135-0061)
- Employees
- 2000-3000
- Founded
- 1993
Attack summary
Severity: critical — 743 GB of data has been published by the threat actor from a large-scale Japanese B2B e-commerce operator serving hundreds of thousands of business customers; the dataset likely contains extensive PII, financial records, and corporate customer data at significant scale, meeting the threshold for critical severity under confirmed exfiltration and publication of regulated/sensitive data.RansomHouse claims to have exfiltrated 743 GB of data from ASKUL and the disclosure status is marked as 'data_published', indicating the stolen data has been or is being released. The group has not stated a separate encryption action in the visible post excerpt; the primary threat vector appears to be data exfiltration and publication.
Data the group says was taken
AI dossier — extracted from the leak post- Business customer records
- Order and transaction history
- Employee data
- Financial and billing records
- Supplier and vendor information
- Internal operational documents
- Potentially medical/care product procurement data
What the group claims
ASKUL Corporation, founded in 1963 and headquartered in Tokyo, is a leading Japanese e-commerce company serving both businesses (B2B) and consumers (B2C). It offers office supplies, daily goods, medical products, and logistics services through platforms such as ASKUL, SOLOEL ARENA, and LOHACO. The company operates its own distribution centers, ensuring fast delivery and efficient supply chain management. ASKUL also provides additional services like printing, office design, and digital business solutions. The company emphasizes sustainability, digital transformation, and recycling initiatives.
The leak post
captured from the group's site```
{"data":[{"id":"a1894b76b7004c75a3a0845799af49956592e3d9","display":"animated","header":"HOT NEWS","info":" Trellix is a global cybersecurity company.","url":"","sort":1,"views":"436242"},{"id":"336b257f582b17573c97578efd4b22762bf77344","sort":2,"header":"Trellix (McAfee & FireEye)","url":"https://www.trellix.com/","private":"false","revenue":"1.5-2 B$","employees":"5000","info":"Trellix is a global cybersecurity company formed from the October 2021 merger of McAfee Enterprise and FireEye. It provides services to over 50,000 business and government customers worldwide, protecting more than 200 million endpoints. The companys open and native extended detection and response (XDR) platform helps organizations confronted by todays most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem, accelerates technology innovation through machine learning and automation to empower over 40,000 business and government customers with living security","statusDate":"DEPENDS ON YOU","status":"EVIDENCE","published":"NOT YET","action":"Encrypted","actionDate":"17/04/2026","volume":"~","content":"cybersecurity.html"…Sources
Source
Indexed 9 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

