SK Telecom Fined $97 Million for Data Breach Affecting Half of South Korea's Population.
ByAinvest
Wednesday, Aug 27, 2025 10:18 pm ET1min read
SKM--
The breach, which was disclosed in April, affected 23 million users, including those on the company's LTE and 5G networks. The PIPC investigation revealed that hackers gained access to the company's internal network in August 2021 and again in June 2022 before stealing 9.82 gigabytes of personal user data on April 18, 2025 [1].
The PIPC determined that SK Telecom did not take basic security measures and poorly managed its internal servers. For instance, the company did not conduct inspections after discovering hacker access to its servers in February 2022 and did not carry out basic security updates, exposing itself to cyberattacks [1].
SK Telecom has expressed regret and committed to strengthening customer data protection. The company has been ordered to strengthen its security measures and make changes to its governance structure so that the chief privacy executive oversees the entire personal information operations [1].
Lawmaker Yu Yong Weon has raised concerns about the national security implications of the hack. He suggested that the hackers could potentially reconstruct entire call logs, exposing sensitive communications at the highest level of the government [2].
The newly proposed National Cybersecurity Act aims to unify the government’s emergency response to cyberattacks and facilitate intelligence sharing on cybersecurity threats [2].
References:
[1] https://en.yna.co.kr/view/AEN20250828005000315
[2] https://www.bloomberg.com/news/articles/2025-08-28/sk-telecom-fined-97-million-for-breach-of-personal-data
SK Telecom, South Korea's largest mobile operator, has been fined $97 million for a cyberattack that compromised the data of about half of the nation's population. The Personal Information Protection Commission found that the company failed to protect customer data and not report breaches in a timely manner. SK Telecom has expressed regret and committed to strengthening customer data protection. Lawmaker Yu Yong Weon raised concerns about the national security implications of the hack, citing potential access to sensitive government communications.
SK Telecom, South Korea's largest mobile operator, has been fined $97 million by the Personal Information Protection Commission (PIPC) for a cyberattack that compromised the data of about half of the nation's population. The PIPC found that SK Telecom failed to protect customer data and did not report the breaches in a timely manner [1].The breach, which was disclosed in April, affected 23 million users, including those on the company's LTE and 5G networks. The PIPC investigation revealed that hackers gained access to the company's internal network in August 2021 and again in June 2022 before stealing 9.82 gigabytes of personal user data on April 18, 2025 [1].
The PIPC determined that SK Telecom did not take basic security measures and poorly managed its internal servers. For instance, the company did not conduct inspections after discovering hacker access to its servers in February 2022 and did not carry out basic security updates, exposing itself to cyberattacks [1].
SK Telecom has expressed regret and committed to strengthening customer data protection. The company has been ordered to strengthen its security measures and make changes to its governance structure so that the chief privacy executive oversees the entire personal information operations [1].
Lawmaker Yu Yong Weon has raised concerns about the national security implications of the hack. He suggested that the hackers could potentially reconstruct entire call logs, exposing sensitive communications at the highest level of the government [2].
The newly proposed National Cybersecurity Act aims to unify the government’s emergency response to cyberattacks and facilitate intelligence sharing on cybersecurity threats [2].
References:
[1] https://en.yna.co.kr/view/AEN20250828005000315
[2] https://www.bloomberg.com/news/articles/2025-08-28/sk-telecom-fined-97-million-for-breach-of-personal-data
Stay ahead of the market.
Get curated U.S. market news, insights and key dates delivered to your inbox.
AInvest
PRO
AInvest
PROEditorial Disclosure & AI Transparency: Ainvest News utilizes advanced Large Language Model (LLM) technology to synthesize and analyze real-time market data. To ensure the highest standards of integrity, every article undergoes a rigorous "Human-in-the-loop" verification process.
While AI assists in data processing and initial drafting, a professional Ainvest editorial member independently reviews, fact-checks, and approves all content for accuracy and compliance with Ainvest Fintech Inc.’s editorial standards. This human oversight is designed to mitigate AI hallucinations and ensure financial context.
Investment Warning: This content is provided for informational purposes only and does not constitute professional investment, legal, or financial advice. Markets involve inherent risks. Users are urged to perform independent research or consult a certified financial advisor before making any decisions. Ainvest Fintech Inc. disclaims all liability for actions taken based on this information. Found an error?Report an Issue
ABOUT US
Our StoryNews AuthorsKnowledge BasePrivacy PolicyTerm of UseThird Party Brokerage DisclaimerAIME Terms of UseAInvest AI Risk DisclosuresCareersCONTACT US
Email: support@ainvest.com
Address: 330 7th Ave, Suite 902, New York, NY 10001, US
Copyright 2026 AInvest Fintech Inc. All rights reserved.
Comments
No comments yet