South Korean President Demands Accountability After Coupang Data Leak

South Korea’s President Lee Jae Myung has ordered immediate action against those responsible for a significant data breach at e-commerce giant Coupang, which has compromised the personal information of over 33 million customers. The president expressed his astonishment that the company did not identify the breach for five months, referring to the incident as a “massive” breach of trust.

The leak reportedly occurred through overseas servers from June 24 to November 8, 2023, but Coupang only became aware of the situation in October 2023. Local police and media indicated that the company filed a complaint in November against a former employee, identified as a Chinese national, as the alleged perpetrator.

Government Response and Investigation

In light of the incident, President Lee has called for the government to enhance penalties for data breaches. He emphasized the need for “substantive and effective countermeasures,” urging that those responsible for the breach be held strictly accountable. The president’s remarks came during a meeting on data security, where he stressed the urgent need to identify the root cause of the incident.

Authorities have initiated an investigation, with police tracing computer IP addresses and exploring potential international collaboration. They have warned that the leak could pose a serious threat to the daily lives and safety of citizens.

Coupang has notified its customers that their names, email addresses, phone numbers, shipping addresses, and certain order histories were exposed in the breach. However, the company assured that payment details and login credentials remained secure.

Context of Cybersecurity in South Korea

This incident follows another major breach involving South Korea’s largest mobile carrier, SK Telecom, which was fined approximately 134 billion won (around $91 million) in August 2023 after a cyberattack compromised data from nearly 27 million users. South Korea, known for its advanced digital infrastructure, has also been a target for cyberattacks, particularly from its arch-rival, North Korea.

Last year, police revealed that North Korean hackers had infiltrated a South Korean court computer network, stealing sensitive data, including financial records. Recently, South Korean authorities have linked a North Korean hacking group to a cyberattack on the cryptocurrency exchange Upbit, resulting in the unauthorized withdrawal of 44.5 billion won in digital assets.

The ongoing challenges related to cybersecurity highlight the need for robust measures to protect sensitive information in an increasingly digital world. As investigations into the Coupang breach continue, the implications for customer trust and corporate accountability are significant.