South Korean data breach results in 220m records stolen

16 people have been arrested for stealing personal details of half the population

Personal details, relating to half of South Korea's population, have been stolen by hackers, including full names, account names, passwords and resident registration numbers.

The hack was revealed after 16 people were arrested for stealing data from a number of online game and movie ticket sites. They are said to have set up targeted attacks on registration pages of the sites to siphon off the personal details.

In total, 220 million records were stolen and they are said to contain 'personally identifiable' information about 27 million people aged between 15 and 65.

One of the hackers, known only by the name of 'Kim', used an extractor that allowed him to log onto user accounts after they used the sign up page and buy virtual currency using their account. He then managed to sell this virtual currency for a profit of $390,000 (235,000).

Working with an accomplice, Kim also sold information to third parties, including, it's thought, mortgage fraudsters who paid him just 10 won (0.006) for each person's data and people issuing illegal gambling advertising who each paid him 17 pence.

South Korean authorities are still searching to find out how far the data has travelled and are on the lookout for five more people they think were involved in the security breach.

This isn't the biggest data breach seen by South Koreans, though. In 2011, 35 million people (70 per cent of the population) had their details stolen when a Cyworld, a South Korean social network and Nate, a search engine, was hacked.

Earlier this year, 20 million South Koreans had their registration numbers stolen when an employee of the Korea Credit Bureau stole details of residents.

Featured Resources

Digital document processes in 2020: A spotlight on Western Europe

The shift from best practice to business necessity

Download now

Four security considerations for cloud migration

The good, the bad, and the ugly of cloud computing

Download now

VR leads the way in manufacturing

How VR is digitally transforming our world

Download now

Deeper than digital

Top-performing modern enterprises show why more perfect software is fundamental to success

Download now

Recommended

Microsoft spearheads industry-wide charter against AI cyber attacks
Security

Microsoft spearheads industry-wide charter against AI cyber attacks

23 Oct 2020
Weekly threat roundup: Chrome, Citrix and WordPress
Security

Weekly threat roundup: Chrome, Citrix and WordPress

23 Oct 2020
IT services giant Sopra Steria falls victim to Ryuk ransomware
Security

IT services giant Sopra Steria falls victim to Ryuk ransomware

23 Oct 2020
CMS platforms succumb to KashmirBlack botnet as businesses rush online
Security

CMS platforms succumb to KashmirBlack botnet as businesses rush online

22 Oct 2020

Most Popular

The top 12 password-cracking techniques used by hackers
Security

The top 12 password-cracking techniques used by hackers

5 Oct 2020
The enemy of security is complexity
Sponsored

The enemy of security is complexity

9 Oct 2020
What is a 502 bad gateway and how do you fix it?
web hosting

What is a 502 bad gateway and how do you fix it?

5 Oct 2020