Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Tracking & Law Enforcement

South Korean Credit Card Firms Punished for Data Leak

SEOUL – South Korean regulators Sunday suspended some operations of three credit card firms as punishment for the unprecedented theft of financial data on more than 20 million people.

SEOUL – South Korean regulators Sunday suspended some operations of three credit card firms as punishment for the unprecedented theft of financial data on more than 20 million people.

The country’s largest-ever theft of personal financial data from KB Kookmin Bank, Lotte Card and NH Nonghyup Card involved more than 40 percent of the country’s 50 million population.

South KoreaThe case provoked fury when revealed by prosecutors last month, with thousands flooding the firms’ branches for days to cancel credit cards or get new ones.

The three credit card companies will be banned from issuing new credit cards for three months until May 16, the Financial Supervisory Commission (FSC) said Sunday.

“These firms neglected their duties…to prevent the leak of customers’ information and (to comply with) internal controls,” it said in a statement.

Operations involving existing cardholders will be unaffected, the FSC said, adding each of the three firms will also be fined six million won ($5,640).

The data was stolen by an employee from personal credit ratings firm Korea Credit Bureau who once worked as a temporary consultant at the three firms. He was arrested last month.

The stolen data included names, social security numbers, phone numbers, e-mail addresses, home addresses, credit card numbers and even personal credit ratings.

Millions of affected customers have since cancelled cards or applied for new ones.

Advertisement. Scroll to continue reading.

Credit card usage is particularly high in South Korea, where the average adult has four or five cards.

The three-month ban on accepting new customers is the heaviest state penalty in the South’s competitive credit card market, where customers often switch cards to get more benefits or rewards.

Many major South Korean companies have seen customers’ data leaked in recent years, either by hacking attacks or their own employees.

An employee of Citibank Korea was arrested last December for stealing the personal data on 34,000 customers.

In 2012 two South Korean hackers were arrested for stealing data on 8.7 million customers at the nation’s second-biggest mobile operator.

In November 2011 Seoul’s top games developer Nexon saw the personal information on 13 million users of its popular online game MapleStory stolen by hackers.

In July the same year, personal data from 35 million users of Cyworld — the South’s social networking site — was stolen by hackers.

RelatedAngry South Koreans Flood Banks After Massive Data Leak

 

RelatedInsider Steals Data of 2 Million Vodafone Germany Customers

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Discover strategies for vendor selection, integration to minimize redundancies, and maximizing ROI from your cybersecurity investments. Gain actionable insights to ensure your stack is ready for tomorrow’s challenges.

Register

Dive into critical topics such as incident response, threat intelligence, and attack surface management. Learn how to align cyber resilience plans with business objectives to reduce potential impacts and secure your organization in an ever-evolving threat landscape.

Register

People on the Move

Cloud security giant Wiz has named Fazal Merchant as President and Chief Financial Officer.

Cybersecurity and data protection company Acronis has appointed Gerald Beuchelt as CISO.

Adam Zoller has joined CrowdStrike as Chief Information Security Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.