breach
South KoreaSecurity Affairs
South KoreaSecurity AffairsCoupang Compensates 33.7M Users After $1.17B Data Breach
Tuesday, December 30, 2025
What
South Korean e-commerce platform Coupang is compensating 33.7 million customers with $1.17 billion in purchase vouchers following a data breach that exposed personal information including names, emails, and shipping addresses. This incident highlights the significant financial and reputational costs associated with insider threats and data compromise for major online retailers.
Where
Coupang, South Korea.
When
Unauthorized access began June 24, 2025, detected November 18, 2025, and disclosed in early December 2025.
Key Factors
- •The breach, affecting 33.7 million South Korean customer accounts, involved exposure of names, emails, phone numbers, shipping addresses, and order histories, but no payment or login credentials.
- •Coupang is providing 1.685 trillion won ($1.17 billion USD) in purchase vouchers as compensation, distributed as four 50,000 won vouchers per affected user.
- •The incident was attributed to a former Chinese Coupang employee who accessed data via overseas servers, with the company reporting all stolen data was recovered.
Takeaways
- →Organizations must implement robust insider threat detection and prevention mechanisms, especially for employees with access to sensitive customer data.
- →Companies should prepare comprehensive data breach response plans that include clear communication, regulatory reporting, and substantial customer compensation strategies to mitigate impact and rebuild trust.
Read Full Article
Opens original article on Security Affairs
