Japanese authorities are investigating a major data breach involving at least 11 e-commerce websites, including Tully's Coffee Japan. The websites were reportedly compromised through the use of malicious web-skimming programs, leading to the theft of over 100,000 customer records. The breach may involve up to 40 sites across Japan, with the affected websites being altered to steal sensitive information such as credit card details. Experts warn that the disclosed incidents may represent only a fraction of the total damage caused by such cyberattacks, which have been increasingly reported since 2020. Reports indicate that up to 300,000 records may have been leaked, and the malicious programs included Chinese simplified characters.