주메뉴바로가기본문바로가기
비즈한국 비즈한국

TVING Personal Data Breach Emergency... Signs of Member Information, Including CI, Leaked Externally

This article was automatically translated by AI. There may be errors compared to the original Korean article.  Read original in Korean →

[비즈한국] A personal data breach has occurred at the domestic over-the-top (OTT) service TVING. On the 3rd, TVING announced that it had confirmed signs of member information being leaked externally due to unauthorized hacker access to the database (DB) where user personal information is stored.

A personal data breach occurred at TVING, and it was confirmed that member information had been leaked externally. Photo = TVING homepage
A personal data breach occurred at TVING, and it was confirmed that member information had been leaked externally. Photo = TVING homepage

TVING notified its users of the data breach and issued an apology through notices on its website and application that day. According to TVING, abnormal access to the database storing personal information was detected on the 2nd. The company believes an unidentified hacker accessed the DB and transferred personal information files externally. The exact cause of the incident and the scale of the damage are currently under investigation.

The leaked personal information items include User IDs, names, dates of birth, genders, Connecting Information (CI), Duplicate Subscription Verification Information (DI), mobile phone numbers, email addresses, refund bank account numbers, and passwords. However, the last four digits of the mobile phone numbers were encrypted, and the ID portion of the email addresses, excluding the domain, was also encrypted. Refund account numbers and passwords were also confirmed to have been leaked in an encrypted format. In particular, passwords were found to be stored using one-way encryption. TVING explained that resident registration numbers and payment-related information were not included in the leak as the company does not hold such data.

The leaked items included the CI, which is a unique value used to identify verified users. While account access or financial transactions are not possible with CI alone, concerns have been raised that it could be misused to identify users if combined with personal information leaked from other sources.

Immediately after becoming aware of the breach, TVING stated that it blocked the attacker's IP, changed its cloud access control policies, and strengthened monitoring of DB access. In accordance with relevant laws, the company has reported the incident to the Korea Internet & Security Agency (KISA) and is investigating the cause and the scope of the impact.

Users have been advised to change their passwords for TVING and any other services that use the same account information. The company is accepting reports of damages through its customer service center if users receive suspicious calls or emails involving potential misuse of their personal information.

The scope of the impact of this incident has not yet been confirmed. TVING had approximately 7.7 million monthly active users (MAU) as of April, raising the possibility that a significant number of users could be affected depending on the investigation results.

In its notice, TVING stated, "We sincerely apologize for causing concern to our customers due to this security incident," adding, "We are thoroughly verifying the cause and scope of the incident while prioritizing customer protection measures, and we will transparently disclose the facts as they are confirmed." The company further added, "We will faithfully cooperate with investigations by the government and relevant authorities and do our utmost to prepare measures to prevent recurrence."

This article was automatically translated by AI. There may be errors compared to the original Korean article.
강은경 기자

기술과 산업을 취재하고 씁니다.

gong@bizhankook.com
저작권자 ⓒ 비즈한국 무단전재 및 재배포 금지