South Korean authorities have imposed a report $408 million advantageous on e-commerce large Coupang after concluding {that a} huge information breach uncovered the non-public data of greater than 33 million prospects.
The penalty, introduced by the Private Info Safety Fee (PIPC), is the most important information privateness advantageous ever issued in South Korea. Regulators mentioned the corporate did not implement satisfactory safeguards to guard buyer data and didn’t notify authorities inside the 72-hour interval required below South Korean legislation, in keeping with Al Jazeera, which cited feedback from the privateness watchdog.
The breach affected greater than 33 million customers and was linked to unauthorized entry to buyer accounts. PIPC Chairperson Tune Kyung-hee mentioned throughout a briefing that the incident resulted from insufficient safety techniques somewhat than a complicated exterior cyberattack, in keeping with Reuters.
“This accident occurred attributable to Coupang’s lack of security measures and techniques, not subtle hacking,” Tune mentioned, as reported by Reuters. She added that delayed notifications prevented affected people from taking immediate steps to guard themselves from potential secondary hurt.
Coupang apologized after the regulator introduced the advantageous however disputed components of the findings. The corporate mentioned it regretted that measures it had taken following the incident and explanations it offered to authorities weren’t sufficiently mirrored within the regulator’s resolution.
The corporate additionally indicated it could problem the penalty by authorized channels, in keeping with South Korea’s Yonhap Information Company.
The advantageous follows a authorities investigation that examined the origins of the breach earlier this 12 months. South Korea’s Ministry of Science and ICT concluded {that a} former worker, recognized as a Chinese language nationwide, stole a safety key and used it to achieve unauthorized entry to buyer information, in keeping with findings reported by The Korea Herald.
The case has drawn important consideration due to Coupang’s dominant place in South Korea’s on-line retail market. The corporate, which is listed on the New York Inventory Alternate and headquartered in Seattle, generates the overwhelming majority of its income in South Korea. Market estimates from Seoul-based IM Securities cited by Al Jazeera place Coupang’s share of South Korea’s logistics providers market at roughly 40%, making it the nation’s largest participant within the sector.
Regulators argued that the size of Coupang’s operations elevated its accountability to keep up strong information safety techniques. Tune mentioned the corporate had expanded its e-commerce providers by in depth use of buyer information however lacked ample techniques to handle and defend that data.
The investigation into the breach additionally turned a supply of diplomatic friction between Seoul and Washington. Earlier this 12 months, considerations had been raised by a number of U.S. lawmakers relating to South Korea’s dealing with of the probe into the American-listed firm. Based on Reuters, some Republican lawmakers argued that the investigation mirrored discriminatory therapy towards U.S. companies working in South Korea.
The dispute prompted a response from South Korean lawmakers. Practically 100 legislators signed a joint letter defending the investigation and expressing concern about what they described as exterior strain relating to the nation’s regulatory course of.
The penalty far exceeds the earlier report privacy-related advantageous in South Korea. In 2025, telecommunications firm SK Telecom was fined roughly $88 million over a separate information leak incident.
Source link
#South #Korea #Hits #ECommerce #Giant #Record #Million #Fine #Data #Leak #Million #Users
