The company that brought the world Clannad, Kanon and Angel Beats! is going through one of its worst moments. Visual Arts, the company behind the renowned brand Key, confirmed this Thursday that it suffered a serious security breach: the final complete version of its latest visual novel, anemoi, was uploaded without authorization to a foreign website five days before its official release. Additionally, personal information of over 10,000 people may have been exposed.

According to the company’s statement, an unauthorized third party stole access credentials to Visual Arts’ cloud storage systems and internal infrastructure. With these credentials, whoever carried out the attack accessed the gold master build of anemoi, the final complete version of the game ready for distribution, and uploaded it to a foreign site on April 19. The game was scheduled for its official release on the 24th of that month, meaning the full title was illegitimately available before any buyer could legally acquire it.

The leak wasn’t limited to the game. Visual Arts indicates that confidential and personal information belonging to company employees, clients, business partners, job applicants, and other related individuals may also have been compromised. The company clarifies that the exact number of affected individuals and the full scope of the leak are still under investigation. So far, no confirmed cases of that personal information being distributed or used maliciously have been reported, beyond the game’s leak itself.

Visual Arts reported the incident to the Japan Personal Information Protection Commission on May 11 and plans to contact other relevant authorities as the investigation progresses. In response, the company has taken concrete measures: updated all internal access credentials, implemented continuous monitoring of its systems, created tools to detect unusual activity on its servers, and strengthened security training for its employees. The official Visual Arts store temporarily suspended the acceptance of new orders and is under maintenance while these improvements are implemented.

The company issued a formal apology, acknowledging the possibility that private information under its care may have been compromised and expressing regret for the inconvenience and concerns caused. Those who believe they were affected by the incident can contact the special support point set up by Visual Arts for inquiries related to the breach.

Visual Arts is a Japanese software development company founded in 1991, known primarily for being the home of the Key brand, the creative studio responsible for some of the most influential visual novels in the medium’s history. Among its most recognized titles are Clannad, Kanon, Air, Little Busters! and Angel Beats!, works that not only marked generations of players but also received anime adaptations produced by the Kyoto Animation studio. anemoi, the title affected by this leak, is its latest release in that tradition of emotionally and narratively powerful visual novels.

Do you think incidents like this will change how Japanese studios handle their digital security, or will we continue to see this type of leak too often?