NTT, Asahi Group Japan, TRIAL Holdings, and Mitsubishi Shokuhin Establish "Retail ISAC Japan," the Retail Industry's First Cross-Sector Cybersecurity Information-Sharing Framework

TOKYO — April 6, 2026 — Asahi Group Japan, Ltd. (hereinafter "Asahi Group Japan"), NTT, Inc. (hereinafter "NTT"), TRIAL Holdings, Inc. (hereinafter "TRIAL"), and Mitsubishi Shokuhin Co., Ltd. (hereinafter "Mitsubishi Shokuhin") today announced that they will launch an initiative to enhance "collective cyber defense capabilities" across the retail industry, particularly in the food and daily necessities sectors. As part of this effort, they will establish Retail ISAC Japan, an Information Sharing and Analysis Center (ISAC), the retail industry's first cross-sector framework, together with the founding companies, in April 2026.

Background of the Establishment of Retail ISAC Japan

In recent years, cyberattacks have become increasingly sophisticated, with a growing number of incidents in which attacks targeting specific companies have caused significant disruptions across entire supply chains. The retail industry, particularly in the food and daily necessities sectors, is characterized by a tightly interconnected three-tier structure comprising manufacturers, wholesalers, and retailers. As a result, a cyber incident at a single company can lead to widespread impacts on society and everyday life, including production stoppages, logistics disruptions, and store closures.

In addition, responding to cyber incidents has become increasingly challenging for individual companies and organizations acting alone. Against this backdrop, initiatives such as ISAC, which promote cross-industry information sharing and analysis of cybersecurity measures, are gaining attention. Through such efforts, indicators of compromise (IoCs)*1 and vulnerability information frequently targeted in the retail industry can be promptly shared among ISAC member companies, thereby enhancing the overall cyber defense capabilities of the supply chain.

In light of these circumstances, NTT, Asahi Group Japan, TRIAL, and Mitsubishi Shokuhin, together with the founding companies, have decided to establish Retail ISAC Japan with the aim of strengthening cybersecurity measures across the retail industry.

Objectives and Activities of Retail ISAC Japan

Retail ISAC Japan will serve as a framework to complement the limitations of individual company responses and to strengthen preparedness against cyber risks across the industry. Participating companies will share and analyze information based on mutual trust and translate insights into effective countermeasures.

Following the establishment of Retail ISAC Japan, working groups will be formed for each objective to deepen discussions throughout the year, with regular reporting of outcomes to member companies. Member companies will be able to access knowledge on security measures tailored specifically to the retail industry.

Through these initiatives, Retail ISAC Japan aims to mitigate supply disruptions caused by cyber incidents and ensure the stable supply of food and daily necessities, thereby contributing to the safety and security of people's daily lives.

Future Plans

Going forward, Retail ISAC Japan will continue preparations toward its formal establishment in April 2026, while broadly inviting companies to participate in support of its founding purpose and activities.

NTT and NTT DOCOMO BUSINESS will endorse the objectives of Retail ISAC Japan and serve as the secretariat. In collaboration with a wide range of stakeholders across the retail industry, they will work to establish a mutual support framework against cyber risks and contribute to the realization of a safe and reliable retail infrastructure that supports the stable supply of food and daily necessities.

Founding Members of the General Incorporated Association Retail ISAC Japan (Listed in Japanese alphabetical order, excluding the secretariat)

In addition, the Ministry of Economy, Trade and Industry, which is scheduled to participate in ISAC as an observer, provided the following comment:

"In recent years, cyberattacks have become increasingly sophisticated and complex, with a growing number of attacks targeting supply chains and incidents causing cross-industry impacts. Under such circumstances, initiatives led by private-sector companies in the retail and distribution sectors to share threat intelligence and expertise related to incident response are recognized as important efforts that contribute to strengthening cybersecurity measures across the industry. We expect that this initiative will enhance resilience in the retail and distribution industry, and we will continue to promote cybersecurity measures through public-private collaboration."

Contact for Membership and Inquiries

For membership applications or inquiries regarding the activities of ISAC, please contact:
r-isac@ntt.com

^*1IoC (Indicator of Compromise) refers to a set of data or artifacts that define patterns of malicious activity used by security systems.

About NTT

NTT is a leading global technology innovator, providing a broad range of services to both consumers and businesses. As a mobile operator and provider of infrastructure, networks, and services, NTT is dedicated to promoting a sustainable future through cutting-edge innovations. Our portfolio includes business consulting, AI-powered solutions, application services, global networks, cybersecurity, data center and edge computing, all supported by our deep global industry expertise. Generating over $90 billion in revenue and employing 340,000 professionals, we allocate 30% of our annual profits to fundamental research and development. With operations spanning more than 70 countries and regions, our clients include over 75% of Fortune Global 100 companies, alongside thousands of enterprises, government organizations, and millions of consumers.