Sapphire Capital Co., Ltd. (hereinafter referred to as "the Company") hereby announces that unauthorized access by a third party has been detected in Microsoft 365, a cloud service used by the Company, and that personal data may have been leaked as a result.
We sincerely apologize for any inconvenience and concern this may cause to our business partners and stakeholders.

■ Overview
On December 1, 2025, suspicious activity was detected in Microsoft 365 (Outlook, OneDrive, SharePoint, etc.), a cloud service used by the Company. Following an internal investigation, it was confirmed that a third party had gained unauthorized access to the account, and that personal data held by the Company may have been leaked.
We have initiated a forensic investigation by an external specialized organization to thoroughly examine the period of unauthorized access, the content of emails and files stored in the account, access status, and the status of information viewing and acquisition.

■ Personal Data That May Have Been Leaked
Personal data related to business partners and Company officers and employees (including names, company names, department names, job titles, email addresses, addresses, phone numbers, and other information contained in emails and files within the account)

■ Secondary Damage or Risk Thereof
It has been confirmed that fraudulent emails impersonating the Company were sent from the Outlook account. If you receive fraudulent or suspicious emails impersonating the Company, please do not open them, view attachments, or click on URLs, and delete them immediately.
While no secondary damage from unauthorized use has been confirmed at this time, please exercise caution if you receive impersonation attempts, suspicious communications, or unfamiliar inquiries.

■ Cause and Measures to Prevent Recurrence
Through a forensic investigation by an external specialized organization, we are conducting a detailed examination of the route of unauthorized access, the scope of impact, and the status of information viewing and acquisition. We will provide an overview of the investigation results once they are determined.
The Company takes this matter seriously and will implement necessary measures to prevent recurrence, including strengthening security in cloud service usage and reviewing internal management systems, based on the investigation results.

＜Inquiries Regarding This Matter＞
Sapphire Capital Co., Ltd. Personal Information Response Desk
Nittetsu Nihonbashi Building 3F, 1-13-1 Nihonbashi, Chuo-ku, Tokyo 103-0027
info@sapphirecapital.co.jp