South Korea Cyberattack Compromises 9.6M User Accounts

(MENAFN) A massive cyberattack targeting Kyowon Group has potentially compromised 9.6 million user accounts, according to South Korean government investigators probing what could become one of the nation's largest data security incidents.

A government-led task force including the Korea Internet & Security Agency arrived at the preliminary figure following Kyowon Group's disclosure earlier this week of a ransomware intrusion into its network infrastructure, a news agency reported Wednesday.

Kyowon Group, among South Korea's most prominent education and lifestyle conglomerates, detected unusual system behavior on Saturday before uncovering evidence suggesting unauthorized access to customer information.

The breach appears to have impacted approximately 600 out of 800 total servers operated by the company, investigators revealed.

The corporation maintains membership records totaling roughly 13 million across its eight subsidiary operations. After accounting for duplicate registrations, authorities identified 5.54 million distinct individuals potentially affected, though the 9.6 million figure encompasses those maintaining multiple account profiles.

The company's diverse business portfolio spans educational tutoring services, household appliance leasing, and mortuary operations.

Kyowon Group has stopped short of confirming actual data exfiltration occurred.

"We have identified indications of a possible data leak, and an investigation is under way with relevant organizations and security institutions to determine whether consumers' data was actually breached," Kyowon Group said in a statement. "If customer data is confirmed to have been leaked, we will notify users in a transparent manner."

The incident follows a pattern of significant cyberattacks against South Korean enterprises last year, which resulted in personal information breaches affecting millions of citizens.

MENAFN14012026000045017169ID1110595750