Overview
- Seoul’s cyber investigation unit executed a search-and-seizure at Coupang’s Seoul HQ to secure internal records and digital evidence and to determine the leak’s route, cause and alleged leaker.
- Authorities say the intrusion ran through overseas servers from late June to Nov. 8, and police and the company report no evidence so far of secondary damage or access to payment data or passwords.
- Coupang issued a revised notice defining the incident as a data breach at the Personal Information Protection Commission’s direction and reiterated user guidance to guard against phishing.
- The presidential office urged swift steps to prevent harm and called for scrutiny of customer contract terms that could limit liability, as agencies move to tighten ISMS-P oversight and penalties.
- A U.S. branch of Daeryun plans to file a punitive-damages class action in New York federal court targeting Coupang Inc., gathering roughly 200 plaintiffs so far and focusing on governance and disclosure issues.