SK Shieldus Confirms Company Data Uploaded to Dark Web
Reports Breach to KISA, Personal Information Leak to PIPC
PIPC Conducting Preliminary Survey of Robot Vacuum Privacy Practices
The Personal Information Protection Commission (PIPC) announced on the 23rd that it has launched an investigation into a personal information leak at SK Shieldus. On October 17, SK Shieldus discovered that information related to the company had been uploaded to the dark web and reported the cyber incident to the Korea Internet & Security Agency (KISA).
Subsequently, the PIPC requested relevant materials to verify the facts. After conducting a preliminary review, the commission upgraded the case to a formal investigation when SK Shieldus officially reported the personal information leak at around 11 p.m. the previous day.
According to SK Shieldus's report, a hacker appears to have compromised an employee's personal email account, resulting in the leak of work documents containing personal information (such as names, phone numbers, and email addresses) of both company and client representatives.
The PIPC stated that it is verifying the specific circumstances and scale of the leak, as well as any violations of the Personal Information Protection Act. At the same time, it is conducting a preliminary review of major robot vacuum brands on the market to address concerns about the potential exposure of personal information through video and audio equipment attached to these devices.
In addition, the commission is analyzing the privacy policies of major brands and robot vacuum products, including Samsung Electronics, LG Electronics, Roborock, and Xiaomi, to ascertain the facts. It is also conducting on-site inspections and requesting materials from businesses for a thorough review.
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
