Tully's Coffee Japan Reports Data Breach: Personal and Credit Card Information Exposed

Tully's Coffee Japan has revealed a data breach affecting thousands of customers who used its online store. The company discovered the breach on May 20, 2024, and announced it publicly on October 3. The breach exposed the personal and credit card details of customers, with hackers exploiting a vulnerability in the company's online system.

The breach impacted 92,685 users, with their personal details—such as names, addresses, phone numbers, and login credentials—compromised. Additionally, 52,958 customers who made card payments between July 2021 and May 2024 had their credit card information leaked.

In response, Tully's Coffee is boosting its system security and closely monitoring for any further threats. The company has reported the breach to Japan's Personal Information Protection Commission (PPC) and is cooperating with the Tokyo Metropolitan Police to investigate the incident.

For further details, Tully's Coffee has officially shared a statement in Japanese - here