Ransomware cyber

Yes24

Jun 12, 2025 1 min read
Yes24

A ransomware attack on Yes24, one of South Korea’s largest ticketing platforms and online book retailers, has caused significant disruptions in the country’s entertainment industry. The attack left the company’s website and services offline for four consecutive days, leading to event cancellations and postponements. The outage impacted presales and events for K-pop stars and actors, and producers of musicals had to ask audience members to present printed or emailed reservations. The company is working to restore services and has reported suspicious activity involving unauthorized access to customer data to South Korea’s data privacy agency.

Source: https://therecord.media/yes24-south-korea-ransomware-attack

TPRM report: https://scoringcyber.rankiteo.com/company/yes24

"id": "yes433061225",
"linkid": "yes24",
"type": "Ransomware",
"date": "6/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'industry': 'Entertainment',
                        'location': 'South Korea',
                        'name': 'Yes24',
                        'type': 'Ticketing platform and online book retailer'}],
 'date_detected': 'Early on Monday',
 'date_resolved': 'June 15',
 'description': 'A ransomware attack on Yes24, one of South Korea’s largest '
                'ticketing platforms and online book retailers, has disrupted '
                'the country’s entertainment industry, forcing event '
                'cancellations and postponements.',
 'impact': {'downtime': 'Four consecutive days',
            'operational_impact': 'Event cancellations and postponements',
            'systems_affected': ['Website',
                                 'Online bookings',
                                 'E-book access',
                                 'Community forums']},
 'investigation_status': 'Ongoing investigation by Personal Information '
                         'Protection Commission',
 'references': [{'source': 'Local media reports'}],
 'regulatory_compliance': {'regulatory_notifications': ['Investigation by '
                                                        'Personal Information '
                                                        'Protection '
                                                        'Commission']},
 'response': {'communication_strategy': ['Posted notice on website'],
              'remediation_measures': ['Regained control of administrator '
                                       'account',
                                       'Working to restore other services']},
 'title': 'Ransomware Attack on Yes24',
 'type': 'Ransomware'}
Published by
Jeremy C
Jeremy C
You might also like
Ransomware cyber

EUMETSAT

public 1 min read
EUMETSAT, a European meteorological organization, was victimized by Fog ransomware. The attack was atypical, utilizing legitimate and open-source tools like…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.