Japanese retailer Muji is suspending online orders after logistics partner Askul was knocked offline by a ransomware attack.

Muji confirmed late on Sunday that “logistics failures” had crippled its online store and subscription services, with no estimate yet for when orders might resume. Customers attempting to buy its famously understated furniture, clothing, and stationery are instead met with error messages – a jarring contrast to the brand’s otherwise Zen aesthetic.

The disruption stems from a cyberattack on Askul, a major Japanese e-commerce and logistics firm that handles fulfillment for Muji’s online store.

Askul said on Tuesday that its website had suffered a “system failure due to ransomware infection” and that it had halted all orders and shipments while investigating the full extent of the breach. The company added that it was probing whether any personal or customer data had leaked during the intrusion.

Askul’s operations appear to have been brought to a near standstill. Its statement lists a laundry list of suspended functions, including new user registrations, returns, catalog requests, and pharmaceutical orders. Even its customer service hotline and online inquiry form are down, leaving customers with little recourse beyond waiting for updates. 

Orders not yet delivered as of October 21 have been canceled “sequentially,” the company said, adding another layer of frustration for businesses and consumers relying on its logistics network.

Askul, whose clients include major retailers and corporate suppliers, plays a critical role in connecting online storefronts with distribution warehouses.

Loft, a Japanese household goods store, is also warning of “service impact” due to the Askul cyberattack, and department store chain Sogo & Seibu says it too has suspended online sales of some merchandise because of the disruption.

Neither Muji nor Askul has disclosed which ransomware group is responsible or whether a ransom demand has been received, and no major crew has yet claimed responsibility.

The Askul incident is the latest in a growing string of ransomware and cyber mishaps hitting Japan’s corporate heavyweights. Earlier this month, the nation’s biggest brewer, Asahi, admitted that a cyberattack claimed by the Russian-speaking Qilin gang halted production lines and delayed new product launches across the country.

Both Muji and Askul have issued apologies that are heavy on humility and light on detail. Askul has promised to provide updates “as soon as we understand” the scope of the incident, while Muji thanked customers for their “understanding” as it works to restore operations. 

For now, Japan’s minimalism lovers will need to find their calm elsewhere – perhaps by waiting quietly for the checkout page to load again. ®