**Coupang Faces Fallout After Massive Data Breach in South Korea**
South Korea’s leading e-commerce giant, Coupang, is under intense scrutiny following a major data breach that has triggered regulatory action, executive resignations, and law enforcement investigations. The incident, linked to a former employee, exposed sensitive customer information, prompting swift responses from government officials and market observers.
Key Details of the Breach
- Who: Coupang, South Korea’s largest online retailer, which operates across e-commerce, grocery delivery (Rocket Fresh), food delivery (Coupang Eats), and streaming (Coupang Play).
- What: A massive data leak involving customer information, allegedly perpetrated by an ex-employee. The breach has raised concerns over data security and corporate accountability.
- When: The incident came to light in late December 2025, with investigations and fallout unfolding in the following days.
- Where: The breach affected South Korean users, with Coupang’s Seoul headquarters raided by police as part of the probe.
Regulatory and Corporate Fallout
- Government Response: South Korean Prime Minister Han Duck-soo warned of "stern action" against any legal violations by Coupang, while officials, including a senior government figure (referred to as "Lee"), called for tougher penalties and fines to deter future breaches.
- Executive Resignation: Coupang’s CEO stepped down in the wake of the scandal, with an interim CEO named to lead the company through the crisis.
- Law Enforcement Action: South Korean police raided Coupang’s offices in Seoul as part of their investigation into the breach.
- Market Impact: Coupang’s stock initially fell amid the news but later recovered slightly after the company identified the ex-employee responsible. The breach has also drawn attention to data protection laws and corporate governance in South Korea’s tech sector.
Broader Context
The breach occurs as Coupang continues to expand its retail media and content commerce ecosystem, including a recent partnership with TNL Mediagene to bolster its presence in Taiwan. However, the incident has overshadowed these developments, highlighting vulnerabilities in customer data protection for major e-commerce platforms.
The investigation remains ongoing, with regulators and law enforcement assessing the full scope of the breach and potential legal consequences for Coupang.
Coupang cybersecurity rating report: https://www.rankiteo.com/company/coupang
"id": "COU1766765592",
"linkid": "coupang",
"type": "Breach",
"date": "12/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Massive (exact number not '
'disclosed)',
'industry': 'Retail',
'location': 'South Korea',
'name': 'Coupang, Inc.',
'size': 'Large',
'type': 'E-commerce'}],
'customer_advisories': 'Public apology issued',
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Customer data, personally '
'identifiable information'},
'description': 'Coupang, a leading South Korean e-commerce company, '
'experienced a massive data breach involving customer data. '
'The breach led to the resignation of the CEO and triggered '
'regulatory scrutiny, including police raids and calls for '
'stronger penalties.',
'impact': {'brand_reputation_impact': 'Significant',
'data_compromised': 'Customer data',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential fines and penalties'},
'investigation_status': 'Ongoing',
'references': [{'source': 'Yonhap'},
{'source': 'MarketScreener'},
{'source': 'TNL Mediagene'}],
'regulatory_compliance': {'legal_actions': 'Police investigation, potential '
'fines',
'regulations_violated': 'Data protection laws '
'(South Korea)',
'regulatory_notifications': 'Yes'},
'response': {'communication_strategy': 'Public apology issued',
'law_enforcement_notified': 'Yes'},
'threat_actor': 'Ex-Employee',
'title': 'Coupang Massive Data Breach',
'type': 'Data Breach'}