South Korea’s dominant e-commerce platform Coupang has confirmed a significant cybersecurity incident compromising the personal data of approximately 33.7 million customer accounts. The company, often referred to as South Korea’s equivalent of Amazon, disclosed that unauthorized access to its systems originated from overseas servers beginning June 24th.
The breach was detected on November 18th, prompting immediate notification to relevant authorities. According to Coupang’s official statement, the exposed information includes customer names, email addresses, phone numbers, shipping addresses, and limited order history data. Crucially, the company emphasized that financial payment details and login credentials remained secure throughout the incident.
This security compromise affects a substantial portion of Coupang’s user base, considering the company reported 24.7 million active commerce customers during the third quarter. The platform’s ‘Rocket’ delivery service has made it an integral part of daily life for millions of South Korean consumers.
Coupang’s investigation remains ongoing with collaboration from law enforcement and regulatory agencies. The company has not yet released details regarding potential mitigation measures for affected customers or the specific methodologies employed in the cyber intrusion.