Major Data Breach Rocks South Korean E-commerce Giant
South Korean authorities have launched a comprehensive investigation into a massive data breach at online retail giant Coupang Inc. that potentially exposed approximately 33.7 million user accounts. This security incident could represent the widest hack ever experienced in South Korea, a country with a population of 51.7 million people.
Investigation Reveals Shocking Scale
According to reports from Yonhap News, the personal information was allegedly hacked by a Chinese national who previously worked at the company. Police began their official investigation after receiving a formal complaint from Coupang that did not name any specific suspect.
The Ministry of Science and ICT confirmed in an official statement that they have formed a joint investigation team and plan to thoroughly analyze the cause of this significant security incident. This breach at the US-listed e-commerce company highlights the growing cybersecurity risks facing South Korean corporations.
Timeline of the Security Incident
Coupang revealed in an emailed statement that the company first became aware of the security issue on November 18, when they discovered that personal information from approximately 4,500 accounts had been exposed. The compromised data included names, email addresses, shipping addresses, and phone numbers.
After reporting the initial incident to authorities, a subsequent investigation uncovered the shocking truth that approximately 33.7 million accounts had actually been exposed. The company confirmed that unauthorized access through overseas servers appears to have begun as early as June 24.
The timing of this discovery is particularly concerning given that Coupang had reported reaching 24.7 million "product commerce active customers" in the third quarter, representing a 10% year-on-year growth, according to their November 4 announcement.
Broader Cybersecurity Concerns in South Korea
This major security breach at Coupang underscores the rising cybersecurity threats facing South Korean companies. The incident follows other significant data protection failures in the country.
Earlier this year, SK Telecom Co., South Korea's largest mobile carrier, was fined $97 million for failing to adequately safeguard customer data and for delayed reporting of security breaches. Other major corporations including KT Corp. and Lotte Card Co. have also disclosed data leaks in recent months.
Coupang's Response and Security Measures
In response to the breach, Coupang stated that they have blocked the unauthorized access route and strengthened internal monitoring systems. The company has officially apologized for the incident and committed to full cooperation with ongoing investigations.
The e-commerce giant emphasized its commitment to customer security while acknowledging the seriousness of the situation. As the investigation continues, both authorities and cybersecurity experts are working to determine the full extent of the damage and implement measures to prevent similar incidents in the future.
