DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Hyundai Capital in South Korea to notify 420,000 customers of data breach; Financial watchdog opens investigation

Posted on April 11, 2011 by Dissent

Ju-min Park of Reuters reports:

South Korea’s financial watchdog launched an investigation on Monday into the leak of personal information from South Korea’s Hyundai Capital, the consumer finance unit of Hyundai Motor Group, a Financial Supervisory Service official said.

Hyundai Capital said personal information on about 420,000 of its 1.8 million customers was leaked when an unidentified hacker attacked its database.

Read more on Portfolio.com.

In related coverage, KBS World reports:

A cyber crime investigation team of the Seoul Metropolitan Police Agency probing the case said it found evidence of hacking into Hyundai Capital via a server in the Philippines and Brazil….

Last Thursday, Hyundai Capital said it had received a threat letter from a group that demanded hundreds of millions of won for not revealing personal data of some 420-thousand Hyundai Capital customers that the group had hacked. At first, the hackers had reportedly hacked personal data, including customer names, social security numbers, e-mail addresses and cell phone numbers. But additional investigation found that security passwords of some 13-thousand customers of prime loans had also been leaked.

And Yonhap News Agency adds:

… the company told the public on Friday that an unidentified hacker attacked its database, leaking personal information for 420,000 of its 1.8 million customers, including their names, resident registration numbers, mobile phone numbers and email addresses. At the time, the company stressed that key data required for financial transactions was not leaked.

[…]

Hyundai Capital said that it plans to notify affected customers of the fact that their private data and credit information was leaked, while asking them to change their passwords. It also will beef up security measures against additional hacking attempts, its official said.

What may really cause trouble for the firm (as if they didn’t have enough already!) is something reported by Korea JoongAng Daily:

Hyundai Capital also admitted that private information about its customers has been trickling out since February, but the firm only became aware of it when a hacker who got hold of the information sent the company an e-mail to extort money.

Executives faced the press on Sunday and apologized, as reported by the Korea Herald.


Related:

  • Paying cyberattackers is wrong, right? Should Taos County's incident be an exception?
  • IVF provider Genea notifies patients about the cyberattack earlier this year.
  • Key figure behind major Russian-speaking cybercrime forum targeted in Ukraine
  • Clorox Files $380M Suit Alleging Cognizant Gave Hackers Passwords in Catastrophic 2023 Cyberattack
  • Cyberattacks Paralyze Major Russian Restaurant Chains
  • France Travail: At least 340,000 job seekers victims of new hack
Category: Breach IncidentsBusiness SectorFinancial SectorHackNon-U.S.Of Note

Post navigation

← Readers question whether Epsilon breach was really names and email addresses only (updated to include response from Epsilon)
CO: Credit card fraud hits Snowmass →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
  • Hacker group “Silent Crow” claims responsibility for cyberattack on Russia’s Aeroflot
  • AIIMS ORBO Portal Vulnerability Exposing Sensitive Organ Donor Data Discovered by Researcher
  • Two Data Breaches in Three Years: McKenzie Health
  • Scattered Spider is running a VMware ESXi hacking spree
  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack (1)
  • Infinite Services notifying employees and patients of limited ransomware attack
  • The safe place for women to talk wasn’t so safe: hackers leak 13,000 user photos and IDs from the Tea app

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • California Attorney General Announces $1.55M CCPA Settlement with Healthline.com
  • Canada’s Bill C-2 Opens the Floodgates to U.S. Surveillance
  • Wiretap Suits Pit Old Privacy Laws Against New AI Technology
  • Action against tiny Scottish charity sparks huge ICO row
  • Congress tries to outlaw AI that jacks up prices based on what it knows about you
  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.