In preparing this site’s Top 10 biggest breaches list, I had noted that there were conflicting reports about a 2008 breach involving the Korea unit of eBay. The breach was back in the news recently as a court held that Auction was not liable. Now it’s back in the news yet again with reports that the breach was as large as this site had reported. Kim Tong-hyung reports:
The news keeps getting worse for Auction (www.auction.co.kr), eBay’s local unit and the country’s largest online retailer, which has become the face of Korean ineptitude in cyber security.
The company had struggled to recover from the fallout of a highly-publicized data theft case initially reported to involve 10.8 million of its customers, although is breathing a little easier when a recent court ruling saved it from a severe class-action payout.
However, Auction officials are now depressingly mumbling “here we go again.” The police announced Thursday that the Chinese hackers who breached the Auction’s servers in 2008 took the information of more than 18.6 million people, not 10.8 million, basically taking the company’s entire customer database.
Read more in The Korea Times.