LG Uplus reports suspected breach after months of scrutiny
LG Uplus reported a potential server compromise to the Korea Internet and Security Agency, marking the third major telecommunications provider in South Korea to face network intrusion this year. The company acted three months after KISA forwarded intelligence from an ethical hacker who identified vulnerabilities in account management systems.
Attackers reportedly accessed LG Uplus infrastructure through SecureKey, an external security vendor, according to cybersecurity publication Phrack. The breach affected 8,938 servers and exposed credentials for more than 42,000 accounts, plus personal details of 167 staff members. LG Uplus completed an internal audit in August and told the Ministry of Science and ICT that investigators found no evidence.
Legislative pressure intensified after lawmakers questioned whether the carrier altered digital evidence by upgrading operating systems and removing affected equipment. Company representatives said they filed the formal notification to address transparency concerns and to comply with the National Assembly’s guidance. Officials pledged cooperation with government investigators.
