South Korean Police Raid Major E-Commerce Headquarters Following Massive Data Breach

Authorities in South Korea have conducted a major search operation at the headquarters of the country's leading online retailer, Coupang, following a significant data breach that has affected a majority of the nation's population. The action comes in the wake of public disclosure that sensitive personal information belonging to over 33 million customers was unlawfully accessed and extracted.

Investigators executed the search to secure evidence that may clarify the circumstances surrounding the breach, including the methods used to obtain the data and the identity of the individual or individuals responsible. Law enforcement is working to reconstruct the sequence of events that led to the unauthorized data exfiltration and to determine any possible motives for the attack.

The breach, which reportedly began in June, is believed to have been perpetrated by a former employee of Coupang. The individual allegedly accessed and downloaded customer data, including names, email addresses, delivery addresses, and, in some cases, purchase histories. This dataset is estimated to cover a vast segment of South Korea's 52-million-strong population, highlighting the scale and severity of the incident.

Initially, Coupang acknowledged a data leak but suggested it was limited to approximately 4,500 accounts. However, subsequent investigations revealed that the number of affected customers was exponentially higher, encompassing nearly two-thirds of South Korea's residents. The company stated that the former employee involved had already left the country by the end of 2024, further complicating the ongoing investigation.

Authorities have indicated that their current findings have relied mainly on data voluntarily provided by Coupang. With key aspects of the breach still unclear, the police are intensifying efforts to uncover the full scope of the incident and establish a clear timeline. The search at the company's headquarters aims to obtain additional information that could prove critical in identifying the perpetrator and understanding how the breach was executed.

This cyber incident is being described as potentially the most significant data compromise in South Korea's history, given both its scale and the sensitivity of the information involved. The breach has drawn widespread attention from the public, government officials, and industry experts, with many expressing concern over the potential misuse of personal data and the adequacy of existing cybersecurity measures within major corporations.

Coupang, renowned for its rapid delivery services--fulfilling over 99 percent of orders within 24 hours--has also faced criticism in recent years over labor practices and employee welfare. Since 2020, more than 20 workplace fatalities have been reported at the company, according to local media. The data breach has intensified scrutiny of the company's operations, prompting parliamentary hearings and calls for more robust data protection standards across the e-commerce sector.

Political leaders and regulatory bodies are now debating additional measures to strengthen data security and privacy protections for consumers. The breach has underscored vulnerabilities not only within Coupang but also within the broader digital economy of South Korea, emphasizing the importance of comprehensive cybersecurity strategies and crisis response protocols.

As the investigation continues, authorities are expected to release further details regarding the breach and any measures being implemented to prevent similar incidents in the future. The case serves as a critical reminder of the growing risks associated with large-scale data collection and the need for vigilant security practices in the digital age.