Japan: Tomato addresses data breach potentially affecting 62,575 customers
Tomato Co., Ltd. issued, on 28 February 2023, a notice in which it addressed a data breach potentially affecting the personal information of up to 62,575 customers. In particular, Tomato confirmed that personal information may have been leaked due to unauthorised access by a third party. In this respect, Tomato noted that the affected personal information included the credit card information of 14,256 individuals, namely cardholder names, credit card numbers, expiry dates, and security codes, as well as names, addresses, dates of birth, email addresses, and phone numbers.
As a result of the incident, Tomato detailed that it has cooperated with credit card companies to continuously monitor transactions on credit cards, about which information may have been leaked, and is working to prevent unauthorised use. In addition, Tomato confirmed that, based on the results of the investigation, it is strengthening its system security measures and monitoring system to prevent a recurrence. Furthermore, Tomato highlighted that it has reported the unauthorised access in question to the Personal Information Protection Commission, as well as the local police station, and is willing to fully cooperate with their investigation going forward.
You can read the press release, only available in Japanese, here.