"South Korean officials blamed a massive data leak last year at Coupang on management failure, rather than a sophisticated cyberattack, and urged the e-commerce giant to fix vulnerabilities in its security systems. Announcing the first findings of a government-led probe, the Science Ministry said on Tuesday a former Coupang engineer, who was aware of flaws in the authentication process, broke into the system in April, a breach that lasted until November. The same person had attempted to gain access in January, it said."
""It's more of a management problem than an advanced attack," Choi Woo-hyuk, deputy minister for cyber security and network policy, told a press conference, citing lax oversight of authentication systems. "The attacker exploited user authentication vulnerabilities to access user accounts without a proper login and caused large-scale unauthorised information leaks," the ministry said."
South Korean officials blamed a massive Coupang data leak on management failure and urged the e-commerce firm to fix security vulnerabilities. A government-led probe found that a former Coupang engineer, familiar with flaws in the authentication process, broke into the system in April and maintained access until November, after an earlier access attempt in January. Authorities cited lax oversight of authentication systems and characterized the incident as a management problem rather than a sophisticated cyberattack. The ministry said the attacker exploited user authentication vulnerabilities to access accounts without proper login and caused large-scale unauthorised information leaks. Coupang and investors have contested regulator statements and compensation amounts.
Read at DataBreaches.Net
Unable to calculate read time
Collection
[
|
...
]