Brinztech Alert: The Alleged Database of Coupang is on Sale

Dark Web News Analysis

The dark web news reports that a massive database belonging to Coupang, South Korea’s largest e-commerce platform, is being offered for sale on a hacker forum. The seller claims the dataset contains 33.7 million user records, a figure that represents nearly two-thirds of the country’s population. The data purportedly includes highly sensitive Personally Identifiable Information (PII) such as user IDs, full names, emails, phone numbers, Korean and English addresses, signup dates, and total order counts. The asking price is set at $25,000, with communication facilitated via Telegram. Recent intelligence suggests this breach may stem from an insider threat involving a former employee who retained access to internal systems.

Key Cybersecurity Insights

The scale and granularity of this data expose the affected population to risks that extend beyond the digital realm:

• Significant Data Breach Risk: The compromise of 33.7 million users is a catastrophic failure of data governance, effectively exposing the personal details of a vast majority of South Korean adults.
• Physical Security & Safety: Unlike typical breaches, the exposure of detailed delivery addresses (potentially including door entry codes often stored for logistics) creates immediate physical security risks for affected households.
• Insider Threat Vulnerability: Reports indicate the breach went undetected for five months (since June 2025), highlighting a critical failure in monitoring privileged access and offboarding procedures for employees.
• Targeted Social Engineering: The availability of “total order counts” and “signup dates” allows attackers to craft highly convincing phishing campaigns (e.g., “Reward for your 50th order” or “Verification of account age”), significantly increasing the success rate of smishing (SMS phishing) attacks.

Mitigation Strategies

To manage the fallout of this historic breach, the following immediate actions are recommended:

• Proactive User Communication: Issue urgent warnings to all users about the high risk of “smishing” and impersonation attacks. specifically advising them that Coupang will never ask for payment details via text.
• Physical Security Advisory: Advise customers to change their residential door passcodes if they were previously stored in the Coupang app for delivery purposes.
• Privileged Access Review: Immediately audit all active internal accounts and API keys. Revoke access for all former employees and implement strict “least privilege” access controls with continuous monitoring for anomalous data exports.
• Password Reset Enforcement: While the leak reportedly focuses on PII, enforce a mandatory password reset for all Coupang users to mitigate the risk of credential stuffing if the dataset is merged with other password leaks.

Secure Your Business with Brinztech — Global Cybersecurity Solutions

Brinztech protects organizations worldwide from evolving cyber threats. Whether you’re a startup or a global enterprise, our expert solutions keep your digital assets safe and your operations running smoothly.

Questions or Feedback?

For expert advice, use our ‘Ask an Analyst’ feature. Brinztech does not warrant the validity of external claims. For general inquiries or to report this post, please email us: contact@brinztech.com