Cybercrime,
Fraud Management & Cybercrime,
Incident & Breach Response
Also: Texas AG Sues Smart TV Manufacturers, Fortinet SSO Flaws
This week, Information Security Media Group presents a roundup of significant cybersecurity breaches globally. Major developments include a leadership transition at Coupang, the exploitation of critical vulnerabilities in Fortinet’s systems, a data breach at Pornhub, legal action from Texas Attorney General Ken Paxton against smart TV manufacturers, and a cybersecurity incident affecting auto finance provider 700Credit.
See Also: On Demand | Global Incident Response Report 2025
Coupang’s Leadership Shakeup Following Major Data Breach
Coupang, recognized as South Korea’s largest e-commerce platform, has seen its CEO resign amid a significant data breach that compromised the personal information of nearly all adult citizens in the country. In a recent regulatory filing, the company confirmed the departure of CEO Park Dae-jun. He is temporarily succeeded by Harold L. Rogers, the general counsel, as Coupang navigates increased scrutiny from lawmakers.
The breach, publicly announced on December 1, did not include financial or authentication data, according to Coupang. However, the Seoul Metropolitan Police have launched an investigation, indicating that the breach may be traced back to a former employee who misappropriated internal authentication keys.
Amidst this turmoil, founder and Chairman Bom Kim faced backlash for failing to appear at a parliamentary hearing focused on the breach. As lawmakers expressed concerns, Rogers testified and faced inquiries around governance and crisis response.
Exploitation of Fortinet Vulnerabilities Raises Alarm
Cybersecurity experts have reported a surge in malicious logins involving Fortinet devices, following the identification of two critical authentication bypass flaws. These vulnerabilities facilitate unauthorized access to FortiCloud’s single sign-on features, enhancing the risks faced by organizations utilizing Fortinet systems.
Researchers at Arctic Wolf detected these attacks within days of Fortinet’s security advisory. Both vulnerabilities, arising from improper cryptographic signature verification in SAML authentication, allow attackers to bypass authentication processes entirely. Consequently, elaborate security measures such as password strength and multifactor authentication are rendered ineffective during these initial access attempts.
Threats Emerge Following Pornhub Data Breach
The cyber extortion group ShinyHunters has allegedly stolen and is threatening to release over 200 million records belonging to premium Pornhub users. The group claims the data breach occurred after an infiltration into an analytics firm, Mixpanel.
Pornhub has reassured its user base that no direct breach occurred within its systems, emphasizing that sensitive information like passwords and financial details were not compromised. Nonetheless, the investigation continues as the situation develops.
Texas AG Files Suit Against Major TV Brands Over Alleged Surveillance
Texas Attorney General Ken Paxton has initiated legal action against five prominent television manufacturers—Sony, Samsung, LG, Hisense, and TCL—over allegations of invasive surveillance practices. The filings assert that the companies implemented tracking technologies capable of capturing user behavior without adequate consent.
The complaint details how these devices reportedly monitored interactions even when offline, raising significant privacy concerns. The data collection efforts allegedly included monitoring viewing habits across HDMI-connected devices, and the resultant data was purportedly used to build intricate consumer profiles.
700Credit Breach Affects Millions of Consumers
A cyber incident involving auto finance technology provider 700Credit has exposed sensitive information belonging to approximately 6 million consumers. The compromise was detected on October 25 when unauthorized access was identified in the company’s data handling systems.
The exposed data includes personal details such as names, addresses, and Social Security numbers, affecting a significant number of individuals within the U.S. While no evidence of internal network compromise has been reported, the breach highlights vulnerabilities in third-party integrations within the auto finance sector.
CyberVolk’s Ransomware Efforts Stymied by Design Flaws
The pro-Russia hacktivist collective CyberVolk has attempted to revive its ransomware operations through a new platform called VolkLocker. Despite touting upgrades, cybersecurity specialists have pointed out critical design flaws that undermine its effectiveness. Missteps such as hard-coded encryption keys within the ransomware expose significant risks, potentially enabling victims to recover their files without fulfilling ransom demands.
