Coupang, a leading South Korean e-commerce platform often described as “Korea’s Amazon,” has disclosed a significant data breach affecting 34 million of its customers. The announcement was made by South Korea’s Personal Information Protection Commission (PIPC), which has initiated an investigation into the matter.

Details of the Data Breach

The security incident originated from a cloud server managed by a third-party advertising company contracted by Coupang. The leaked information includes customer personal data, specifically names, phone numbers, and email addresses. The Korea Internet & Security Agency (KISA) first notified the PIPC about the potential leak on June 2, 2025, prompting the official inquiry.

Official Investigation and Response

The PIPC has launched a formal investigation to determine the full scope of the breach and to ascertain whether there were any violations of South Korea’s Personal Information Protection Act. The commission stated it will take “stern measures” based on the findings of its investigation if any legal violations are confirmed. Coupang has publicly stated that it is actively cooperating with the regulatory authorities. The company is also working directly with the third-party advertising firm to identify the precise details and extent of the data exposure.

Source: https://securityaffairs.com/185232/data-breach/koreas-amazon-coupang-discloses-a-data-breach-impacting-34m-customers.html