Coupang, South Korea’s largest online retailer, is embroiled in a significant data security scandal following a breach that compromised the personal data of 33.7 million customers. The exposed information, including names, email addresses, physical addresses, and order details, has triggered a major police investigation and public fallout. The breach reportedly occurred on June 24, 2025, but was not discovered by the company until November 18, leading to criticism regarding the delay in detection and subsequent public announcement on December 1.
The investigation into the incident intensified when the Seoul Metropolitan Police Agency conducted a raid on Coupang’s offices earlier this week. This action came despite the company’s public assurances on December 6 that the stolen data had not been leaked online and its claims of fully cooperating with the authorities. The police raid was intended to gather independent evidence, including internal documents, system logs, IP addresses, and access histories, to fully understand the scope and mechanism of the compromise.
During their ongoing investigation, the police identified the primary suspect as a 43-year-old Chinese national and former Coupang employee. This individual, who had worked on an authentication management system after joining the company in November 2022 and left in 2024, is believed to have retained unauthorized access to internal corporate systems even after his departure. The retention of system access by a former employee points to a significant lapse in the company’s internal security protocols and off-boarding procedures.
GET 50% Discount for VPN/ANTIVIRUS SOFTWARE AT 911Cyber - CODE: bit5025
The severity of the crisis was underscored by the resignation of Coupang’s CEO, Park Dae-Jun, on Wednesday, who issued an apology to the public for the company’s failure to prevent the breach. This incident is now being recognized as the worst cybersecurity breach in South Korea’s history, placing immense pressure on the company to enhance its security measures and restore public trust. The police continue to seek an explanation for how the former employee gained and maintained access, especially since the suspect is believed to have already left the country.
The continuing police presence at Coupang’s offices, as they gather crucial records such as user credentials and access histories, highlights the complexity of the case. The focus remains on determining the exact mechanism that allowed the rogue former employee to exploit the internal systems. This high-profile incident serves as a critical warning about the necessity of rigorous access management policies, particularly for employees departing sensitive roles within large organizations.
Source: Coupang Data Breach Traced To Ex Employee Who Retained System Access