Ddos 
A major data breach has struck Coupang, one of South Korea’s most prominent e-commerce platforms, compromising the personal information of an astonishing 33.7 million users—in a country with a population of 51.66 million. The company initially believed that only 4,500 accounts were affected, but a deeper investigation revealed that the vast majority of its user base had been exposed.
On November 18, 2025, Coupang detected suspicious, unauthorized access to approximately 4,500 accounts. However, the subsequent inquiry conducted by its security team uncovered a far more alarming reality: nearly 33.7 million user records had been compromised.
The exposed data includes customers’ names, email addresses, phone numbers, delivery addresses, and portions of their order histories. Such information can greatly enhance the credibility of social-engineering scams, sharply increasing victims’ likelihood of being deceived.
Coupang stressed that no financial information was breached—payment details, credit-card numbers, login credentials, and other highly sensitive data remain unaffected. At the very least, users need not fear fraudulent card charges or direct threats to their bank accounts.
Investigators determined that the unauthorized access began as early as June 24, 2025. The company’s database had apparently been connected to an overseas server through an unknown mechanism, and data stored on that foreign server was exfiltrated. Coupang has now severed the unauthorized access pathway and engaged an independent security firm to conduct a thorough forensic analysis.
Following an inquiry by South Korean authorities, a primary suspect has been identified—a former Coupang employee who is no longer residing in South Korea. As a result, apprehending this individual for questioning may prove considerably challenging.
Donate