The Register reports:
South Korean retail behemoth Coupang has admitted to a data breach that exposed the personal details of 33.7 million customers, turning the company’s famed “Rocket Delivery” logistics empire into an express shipment for personal information.
The e-commerce titan, often dubbed the “Amazon of Korea,” is South Korea’s largest retail platform, logistics operator, and warehousing network – a vertically integrated retail giant whose next-day delivery service, Rocket Delivery, has become shorthand domestically for cardboard boxes arriving before customers have fully remembered ordering anything at all.
… The breach spans more than half of South Korea’s population and includes customer names, email addresses, phone numbers, shipping addresses, partial order histories, and certain delivery metadata. Coupang insists the attackers failed to reach login credentials or payment card details, which it says remain “securely protected.”
A former employee has been suggested as the responsible party. As The Register reports:
Coupang also declined to say who was behind the mammoth breach, but local media reports suggest that a Chinese national – allegedly a Coupang employee – leaked the data from within the company. The reports claim the individual resigned from the company, used an authentication key that was still active after the discontinuation of their contract, and left Korea shortly after the breach came to light.
Read more at The Register.
