Overview
- The Ministry of Science and ICT and KISA report an unidentified actor trafficking data from medical and educational bodies and online shopping sites.
- Officials describe a pattern of attacks on small, lightly protected websites from December through early January.
- Investigators cite the online alias "AshleyWood2022" as a suspected seller linked to the postings.
- Authorities issued a Jan. 6 notice urging CISOs and C‑TAS members to run thorough system checks and remediate vulnerabilities.
- Twenty-one organizations were flagged, including universities and plastic surgery clinics, while Coupang was not on the list, and exposed data may include IDs, user names, emails and passwords.