The Kyowon Group (Kyowon), a South Korean conglomerate, disclosed that a cyberattack has disrupted its operations and customer information may have been exposed in the incident.
The company published a statement earlier this week saying that it recently learned that its systems had been targeted in a suspected ransomware attack.
In a subsequent update today, Kyowon confirmed the ransomware incident, disclosing that it occurred on January, around 10 a.m., and that the attacker exfiltrated customer data.
Data breach banner on the Kyowon site
Source: BleepingComputer
Kyowon is a well-established South Korean conglomerate specializing in education and publishing, digital learning tools, hospitality, and various consumer services.
According to Korean media, there are over 9.6 million accounts registered with the company, corresponding to about 5.5 million people, who may have had their information exposed to hackers.
The same outlets report that the ransomware attack has impacted roughly 600 out of Kuowon’s 800 servers.
The cyber-incident at Kyowon became apparent due to service outages earlier this week, with the company announcing an immediate response, notifying Korea’s Internet & Security Agency (KISA), and promising to inform customers if a data leak is confirmed.
The latest announcement published on the Kyowon website earlier today confirms that some data was stolen during the attack, but there is no confirmation that customer information has been impacted.
... continue reading