Massive breach exposes personal details of over 33 million customers On November 29, personal information—including names, phone numbers, email and delivery addresses – from 33.7 million Coupang accounts was leaked, prompting a police investigation and a two‑day National Assembly hearing that highlighted the scale of the incident [1][3][4]. Lawmakers questioned interim CEO Harold Rogers about the exposure and demanded accountability for the company’s handling of the data [4]. The breach represents roughly two‑thirds of South Korea’s population, underscoring its nationwide impact [1][2].

Compensation plan valued at 1.685 trillion won faces criticism over voucher structure Coupang announced a remediation package worth about 1.685 trillion won (≈ US$1.17 billion), offering each affected user 50,000 won in vouchers [3][4]. Only 5,000 won can be spent on Coupang’s main platform, while the remaining 45,000 won must be used on other sites, including a luxury‑goods marketplace, prompting analysts to label the scheme a promotional tactic that steers spending away from Coupang [2][4]. CEO Rogers asserted the vouchers carry no waiver of civil or criminal actions, but regulators pressed for “meaningful” compensation that victims perceive as remedial [2][3].

Government officials stress accountability and demand clearer legal remedies Labor Minister Kim Young‑hoon expressed doubt that Coupang can be “fixed” without a definitive root‑cause diagnosis, linking the breach to a pattern of alleged cover‑ups and past industrial accidents [1]. The Personal Information Protection Commission’s Song Kyung‑hee placed the burden of proof on the company and highlighted gaps in the data‑protection law regarding monetary damages [2]. Chairman Kim Bom‑suk’s absence from the hearings was condemned as insolent, while a joint public‑private investigation remains pending [4][3].

Forensic analysis points to a former employee, yet official findings remain contested Coupang’s internal forensic review identified a former employee as responsible, recovered the equipment used, and claimed that data from only about 3,000 accounts was saved and later deleted [3]. Science Minister Bae Kyung‑hoon rejected the company’s unilateral assessment, reaffirming that more than 33 million customers were affected and accusing Coupang of malicious intent [1][3]. The government continues to call for a collaborative probe to verify the scope of the breach.