"The company said it first detected the unauthorized exposure of 4,500 user accounts on November 18, but a subsequent investigation revealed that the breach had actually compromised about 33.7 million customer accounts in South Korea. The breach affected customers' names, email addresses, phone numbers, shipping addresses and certain order histories, per Coupang. More sensitive data like payment information, credit card numbers, and login credentials was not compromised and remains secure, the company said."
"A Coupang spokesperson told TechCrunch that the investigation has found no evidence that consumer data from Coupang Taiwan or Rocket Now was affected in the data breach. "According to the investigation so far, it is believed that unauthorized access to personal information began on June 24, 2025, via overseas servers," the company said. "Coupang blocked the unauthorized access route, strengthened internal monitoring, and retained experts from a leading independent security firm.""
Coupang confirmed that unauthorized access to customer data began on June 24, 2025, via overseas servers and continued for more than five months. Initial detection on November 18 identified 4,500 affected accounts, but investigation later determined about 33.7 million South Korean customer accounts were compromised. Exposed information included names, email addresses, phone numbers, shipping addresses, and certain order histories. Payment information, credit card numbers, and login credentials were not compromised. Coupang reported the incident to KISA, the PIPC, and the National Police Agency, blocked the access route, strengthened internal monitoring, retained independent security experts, and police identified at least one suspect.
Read at TechCrunch
Unable to calculate read time
Collection
[
|
...
]