Hacker accessed employees' emails, stealing 15GB of sensitive security data; ministry investigates breach impacting financial institutions and public agencies

According to the results of the investigation into the SK Shieldus security breach incident conducted by the Ministry of Science and ICT, hereinafter referred to as the Ministry of Science and ICT, it was confirmed that approximately 15GB of data was leaked through the personal email accounts of two internal employees. The leaked data was found to include information on a total of 120 private companies, including 15 financial institutions such as SK Telecom and 105 other private companies, as well as numerous public institutions.

According to the 'Response Status of SK Shieldus Security Breach Incident' document received by Representative Choi Soo-jin of the People Power Party through the Ministry of Science and ICT on the 27th, SK Shieldus reported an internal data leak of approximately 24GB to the Ministry of Science and ICT on October 18 of last month. A field investigation into the incident's circumstances and response status is currently underway. The hacker infiltrated a honeypot system operated by SK Shieldus, accessed the personal emails of internal employees that were automatically logged in, and stole customer-related data, which was later posted on the dark web.

The leaked data included sensitive security-related information such as SK Telecom's solution verification documents, security control system configuration materials, and customer test results, necessitating urgent measures to prevent further damage to client companies.

SK Shieldus, a leading domestic security company, has approximately 7,000 employees, sales of around 2 trillion Korean won, and serves a total of 1,201 customers, including 230 public institutions, 185 financial institutions, and 786 private companies.

Representative Choi Soo-jin stated, "Given that a significant number of SK Shieldus's clients are financial institutions and public agencies, the leak of critical security materials, including security control systems, is a serious issue. Swift security responses are needed to prevent the spread of additional damage."