Coupang confirms data breach affecting 33.7 mn users – here’s what is exposed?

Coupang, the leading online retailer in South Korea, has recently acknowledged a significant data breach that has compromised the personal information of approximately 33.7 million users. In a public statement released on Sunday, the company's CEO, Park Dae-jun, expressed sincere regret for the distress this incident has caused to its customers. The breach, which was discovered on November 18, has raised serious concerns about the security of customer data after unauthorized access was reported. Coupang has confirmed that sensitive user details, including names, phone numbers, email addresses, shipping information, and parts of order histories, were exposed. However, payment details and login credentials remain secure and unaffected. Investigations are currently underway, with Coupang collaborating with law enforcement and regulatory bodies. An emergency meeting has been convened by the government, specifically the Ministry of Science and ICT, to determine if Coupang has breached national data protection regulations. Minister Bae Kyung-hoon stated that officials are carefully evaluating the company's security practices and adherence to personal data safeguards. According to reports, the unauthorized access is believed to have started on June 24 and was executed via overseas servers. Local media has indicated that police are looking into a former employee of Coupang from China in connection with the breach. Although the company has filed a complaint with law enforcement, specific details regarding the investigation remain confidential. This incident highlights ongoing vulnerabilities within corporate networks, as it adds to a series of data leaks impacting major South Korean companies, including telecommunications firms. Cybersecurity experts are advising affected customers to be vigilant against phishing attempts and suspicious communications, urging them to monitor their accounts closely and avoid clicking on unknown links.