10 Types of Personal Information Leaked, Including Name, Gender, and Address
Wedding Anniversary and Personal Customs Clearance Code Also Exposed
GS Retail: "Doing Our Best to Prevent Recurrence... Launching Countermeasure Committee"
GS Retail announced on the 27th that it has additionally confirmed signs of a personal information leak involving 1.58 million cases on the home shopping website 'GS Shop'.
Last month, the convenience store GS25's homepage was hacked, resulting in the leakage of personal information of 90,000 customers. Subsequently, after expanding the scope to all operated internet sites and conducting an additional analysis of logs from the past year, signs of personal information leakage were also confirmed on the home shopping website, amounting to approximately 1.58 million cases. The period in question is from June 21 of last year to February 13 of this year.
The personal information presumed to have been leaked through the home shopping website includes a total of 10 items: ▲name ▲gender ▲date of birth ▲contact information ▲address ▲ID ▲email ▲marital status ▲wedding anniversary ▲personal customs clearance unique code. However, financial information such as membership points and payment methods was confirmed not to have been leaked.
After recognizing this fact, GS Retail immediately blocked the IPs attempting the hacking and the attack patterns, locking the home shopping website accounts to prevent login. They also strengthened identity verification procedures during login and sent guidance messages recommending password changes to the affected customers.
GS Retail stated that it will prioritize personal information protection and security enhancement as the top task in light of this incident and will do its best to prevent recurrence. As a post-measure, they will launch an 'Information Protection Countermeasure Committee' involving top executives to promptly manage the incident and subsequently operate the organization on a permanent basis. Additionally, they will prepare comprehensive response measures including ▲expanding investment in information protection ▲introducing the latest information protection technologies and system advancement ▲strengthening security policies ▲reinforcing security expert personnel.
GS Retail said, "To prevent additional damage and for prevention, we will sincerely cooperate with investigations by related institutions and continue to communicate transparently with customers and stakeholders," adding, "We once again deeply apologize to our customers and will do our best to restore customer trust."
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
