Coupang’s Customer Data Breach Sparks Official Response from South Korea’s Ministry of Science and ICT
On November 30, 2025, during an inter-agency government meeting held at the government complex in Seoul, South Korea’s Minister of Science and ICT, Bae Kyung-hoon, addressed concerns surrounding a significant customer data breach involving Coupang, the nation’s leading e-commerce platform. Following an incident where Coupang prematurely disclosed details of its internal investigation, the Ministry responded with a formal protest, emphasizing the necessity of the ongoing joint public-private inquiry into the matter.
The Ministry of Science and ICT released a statement asserting that the investigation team is still working to ascertain the nature, scale, and root cause of the data breach affecting customer data. They clarified that the claims made by Coupang regarding their findings remain unverified. “As of now, assertions made by Coupang have not been corroborated by the joint investigation team,” the ministry emphasized, highlighting the importance of verified information in maintaining public trust.
Earlier on the same day, Coupang had released an announcement on its website asserting that it identified the leaker behind the data breach and had secured all associated devices and storage drives. The company reported that its findings suggested the leak involved approximately 3,000 customer accounts, claiming the former employee responsible had deleted the customer information in question.
Coupang’s statement further hinted at forensic methods used in their investigation, including the utilization of digital fingerprints attributed to the former employee. According to the company, this individual confessed to the breach and provided details on how they had accessed customer data. While Coupang portrayed its findings as conclusive, the Ministry cautioned against drawing premature conclusions until their investigation is finalized.
The incident raises several cybersecurity concerns, particularly regarding the effectiveness of protections against insider threats. The techniques potentially employed in this breach could be categorized under several MITRE ATT&CK tactics, including initial access and persistence. The exploitation of insider knowledge likely facilitated access to sensitive customer data, underscoring vulnerabilities that organizations must address.
As the investigation unfolds, the Ministry of Science and ICT has reiterated the importance of relying on verified facts, warning that premature disclosures could lead to misinformation. This situation not only poses risks to customer data security but also places significant reputational pressure on Coupang, urging businesses to remain vigilant about their cybersecurity protocols and incident response strategies.
The ongoing investigation serves as a crucial reminder for all organizations about the critical need for robust cybersecurity measures and incident management plans. Businesses are advised to assess their systems and ensure that they have safeguards in place to prevent similar breaches, as the fallout from such incidents can have far-reaching implications in an increasingly connected digital landscape.
