 |
Photo: Coupang |
[Alpha Biz= Paul Lee] Coupang has revealed that it detected a cyberattack that exposed the personal information of approximately 4,500 customers more than ten days after the breach first occurred.
According to data submitted by the Korea Internet & Security Agency (KISA) to Rep. Choi Min-hee, Chair of the National Assembly’s Committee on Science, ICT, Broadcasting and Communications, unauthorized access to Coupang’s customer information is estimated to have begun on November 6 at 6:38 p.m. However, Coupang did not identify the intrusion until November 18 — 12 days after the initial breach.
Coupang notified KISA of the incident on November 19 and sent text alerts to affected customers on November 20.
Internal investigation records submitted by Coupang indicate that the cyberattack likely exploited a “signed access token” issued to authenticated users. Using this token, the attacker accessed 4,536 customer profiles containing names, phone numbers, delivery addresses, and up to five recent order records.
Coupang stated that it is investigating how the attacker obtained the unauthorized access token. All related token-signing key information has since been revoked, and the company has strengthened monitoring to prevent additional attempts.
The Ministry of Science and ICT, KISA, and the Personal Information Protection Commission are currently investigating the cause of the breach and the full scope of customer impact based on Coupang’s report.
Alphabiz Reporter Paul Lee(hoondork1977@alphabiz.co.kr)
