Overview
- KC&D, Korean Air's in-flight catering supplier and former subsidiary, was hacked and notified the airline of a leak involving employee information.
- Korean Air confirms data on KC&D servers included employee names and phone numbers, and an internal memo referenced bank account numbers in an ERP system.
- Local outlets report roughly 30,000 records were taken, a figure the company has not verified as it works to determine the full scope.
- The airline says it implemented emergency security checks, reported the incident to authorities, and urged employees to watch for phishing and payment scams.
- No customer data appears affected, and the incident comes as South Korea sees multiple corporate breaches, with researchers noting Clop has claimed the KC&D attack.