Investigators raid Coupanq HQ following data breach affecting 34 million

News
By published

The police want to better understand the case

World Password Day 2025
(Image credit: Shutterstock)
  • Coupang confirms massive breach exposing PII of 34M customers, undetected for nearly six months
  • Police raided its Songpa-gu offices, seizing evidence after reports a former employee’s account was misused
  • Over 10,000 victims are pursuing a class-action lawsuit, seeking compensation

The police have raided the offices of South Korea’s biggest ecommerce store, Coupang, as it investigates one of the largest data breaches in the country’s recent history.

In the final days of November, Coupang confirmed suffering a cyberattack and losing personally identifiable information (PII) of 34 million customers. As per the company’s CEO, the attack started in June 2025, and it wasn’t spotted for almost half a year.

During that time, the attacker exfiltrated people’s names, emails, phone numbers, shipping addresses, and specific order information, putting them at serious risk of identity theft and fraud.

Catch the price drop- Get 30% OFF for Enterprise and Business plans

Catch the price drop- Get 30% OFF for Enterprise and Business plans

The Black Friday campaign offers 30% off for Enterprise and Business plans for a 1- or 2-year subscription. It’s valid until December 10th, 2025. Customers must enter the promo code BLACKB2B-30 at checkout to redeem the offer.

View Deal

More than a dozen investigators

Initial reports state that the data theft was carried out by a former employee at Coupang, also a Chinese national. Allegedly, the employee’s account wasn't terminated even after they left the company, and this access was later used for data exfiltration.

Now, the police are involved, sending 17 investigators to conduct a search and seizure at the company’s Songpa-gu offices. As per the local media, “this search and seizure is an essential measure to accurately understand the case,” and “to comprehensively investigate the overall facts of the case, including the leaker of personal information, the route of the leak, and the cause.”

Local media is also saying that some evidence was confiscated including internal documents and server logs.

“Coupang will do its best to prevent further damage in close cooperation with the Ministry of Science and ICT, the Personal Information Protection Commission, the Korea Internet & Security Agency, the National Police Agency, and other public-private joint investigation teams,” Coupang CEO Park Dae-joon said in a letter published after the breach.

Coupang is the biggest ecommerce store in the country, often nicknamed “Amazon of South Korea”. Alongside this investigation, Reuters reports that more than 10,000 people have already expressed interest in joining a class-action lawsuit against the retailer, which could see them paid $68 per person for their loss.

Via Cybernews

Best antivirus software header
The best antivirus for all budgets

➡️ Read our full guide to the best antivirus
1. Best overall:
Bitdefender Total Security
2. Best for families:
Norton 360 with LifeLock
3. Best for mobile:
McAfee Mobile Security

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.