On the night of the 19th, malicious code was discovered, raising concerns about a cyber attack. SK Telecom’s internal systems were targeted, resulting in a potential data breach involving SIM-related information. SK Telecom has reported the incident to the Korea Internet & Security Agency (KISA) and the Personal Information Protection Commission, while conducting a comprehensive investigation into the extent, cause, and nature of the breach.
SK Telecom stated that on April 19, around 11 PM, suspicious signs were found suggesting a data leak due to malicious code. They have deleted the malicious code and isolated the suspected compromised equipment, though there is no confirmed misuse of the leaked information yet.
To prevent further customer impact, SK Telecom has initiated several measures, including a thorough system investigation, strengthened security against illegal SIM swaps, and more immediate actions upon detecting any suspicious activities. They are also offering a free SIM protection service via their website and T World platform.
The Ministry of Science and ICT has responded by forming an emergency task force to address the situation and has sent KISA experts to support technical analysis and prevent further damages. They are considering assembling a joint public-private investigation team to conduct an in-depth analysis. The Ministry aims to rectify any technical and managerial security flaws discovered during the investigation through corrective orders and is committed to enhancing security oversight of critical information and communications facilities.