**Coupang Users Targeted in Sophisticated Voice Phishing Scams**
A rising wave of voice phishing attacks is targeting customers of South Korea’s largest e-commerce platform, Coupang, exploiting fears of data leaks and fraudulent credit card schemes. Victims report receiving calls from scammers posing as delivery personnel or customer service representatives, armed with personal details—including names, phone numbers, and partial bank account information—to lend credibility to their schemes.
One anonymous Coupang user recounted nearly falling victim after a caller, claiming to be a credit card delivery agent, informed her that a card had been issued in her name. When she denied applying for it, the scammer alleged her identity had been stolen via Coupang and directed her to call a fake customer service line (beginning with 1544). The imposter then referenced her bank account details, prompting her to hang up before any financial harm occurred.
Authorities, including the Financial Supervisory Service (FSS) and police, warn that these scams are growing in frequency. Common tactics include fake credit card issuance alerts, fraudulent compensation claims for delayed deliveries, and malicious links disguised as delivery updates. Scammers often reuse personal data from past breaches to craft convincing scenarios, though no confirmed financial losses have been reported in Coupang-related cases to date.
The FSS has called for heightened monitoring as criminals refine their methods, leveraging the platform’s widespread use to manipulate victims through seemingly legitimate interactions.
Coupang cybersecurity rating report: https://www.rankiteo.com/company/coupang
"id": "COU1767939226",
"linkid": "coupang",
"type": "Breach",
"date": "1/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Multiple Coupang users',
'industry': 'Retail, E-commerce',
'location': 'South Korea',
'name': 'Coupang',
'type': 'E-commerce platform'}],
'attack_vector': 'Voice Phishing (Vishing), Malicious Links',
'customer_advisories': 'Coupang users advised to verify unexpected calls or '
'messages and avoid clicking on suspicious links.',
'data_breach': {'personally_identifiable_information': 'Names, phone numbers, '
'bank account details',
'sensitivity_of_data': 'High (Personally Identifiable '
'Information)',
'type_of_data_compromised': 'Personal data (names, phone '
'numbers, bank account details)'},
'description': 'Criminals are exploiting anxiety over personal data leaks at '
'Coupang to conduct voice phishing scams, including fake '
'credit card delivery schemes and malicious links under the '
'guise of compensation or delivery delays. Victims report '
'callers possessing detailed personal information, such as '
'names, phone numbers, and bank account details, making the '
'scams appear legitimate.',
'impact': {'brand_reputation_impact': "Negative impact on Coupang's brand "
'reputation due to perceived data leaks',
'customer_complaints': 'Increased customer anxiety and complaints',
'data_compromised': 'Personal data (names, phone numbers, bank '
'account details)',
'financial_loss': 'No confirmed financial losses reported',
'identity_theft_risk': 'High risk of identity theft',
'payment_information_risk': 'Potential risk to payment '
'information'},
'initial_access_broker': {'data_sold_on_dark_web': 'Personal data reused from '
'past breaches'},
'investigation_status': 'Ongoing (closer monitoring by FSS and police)',
'lessons_learned': 'Users must verify unexpected calls or messages, '
'especially those requesting personal or financial '
'information. Companies should enhance customer education '
'on phishing risks and improve data protection measures to '
'prevent leaks.',
'motivation': 'Financial gain, Identity theft',
'post_incident_analysis': {'root_causes': 'Reuse of leaked personal data, '
'Lack of user awareness, '
'Sophisticated social engineering '
'tactics'},
'recommendations': ['Implement multi-factor authentication for customer '
'accounts',
'Enhance customer education on phishing and social '
'engineering risks',
'Strengthen data protection measures to prevent leaks',
'Monitor and block suspicious communications (e.g., fake '
'customer service numbers)',
'Collaborate with financial authorities to track and '
'dismantle phishing rings'],
'references': [{'source': 'Financial Supervisory Service (FSS)'}],
'response': {'enhanced_monitoring': 'Closer monitoring by Financial '
'Supervisory Service (FSS) and police'},
'threat_actor': 'Phishing rings, Cybercriminals',
'title': 'Coupang-Related Voice Phishing Scams Exploiting Personal Data Leaks',
'type': 'Phishing / Social Engineering',
'vulnerability_exploited': 'Reuse of leaked personal data, Lack of user '
'awareness'}