Korean credit card bosses say sorry 53 million times after massive data breach

Graham Cluley
Graham Cluley
@[email protected]

SorryAlmost half of all South Koreans have had their credit card details stolen and sold on to marketing firms, according to media reports.

An IT contractor working for the personal credit ratings firm Korea Credit Bureau (KCB) has been arrested, after allegedly copying customer names, social security numbers, phone numbers, credit card numbers and expiry dates of up to 20 million South Koreans onto a USB stick, and passing it on to phone marketing companies.

As many South Koreans carry more than one credit card, the number of credit card details stolen (53 million according to some reports) actually exceeds the country’s entire population.

Security measures at three credit firms breached – KB Kookmin Card, Lotte Card and NH Nonghyup Card – are hopefully being closely looked at, as the South Korean financial industry has suffered a serious blow to its credibility in the eyes of the public.

Sign up to our free newsletter.
Security news, advice, and tips.

What’s nice is that the chief executives of the firms publicly apologised at a news conference in Seoul:

Credit card data loss apology

And then they resigned.

Now, wouldn’t it be refreshing if some top bosses at Western companies felt the same sense of responsibility when their firms are negligent in properly protecting their customers’ personal and financial information?

South Korea’s Financial Services Commission says that the credit card firms will cover any customers who suffer a financial loss as a result of the security breach.

South Korea doesn’t have a stellar record for data security. Back in 2011, for instance, hackers broke into the popular websites Nate and Cyworld, and stole information about 35 million social networking users.

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.