Kyowon, known for education businesses such as Kumon Learning, said on the 12th that it detected signs of a cyber breach believed to be ransomware and activated an emergency response system.
Kyowon said that around 8 a.m. on the 10th it spotted abnormal signs in some in-house systems and immediately separated the internal network and blocked access. A Kyowon representative said, "We are currently putting the protection of customer information first and devoting all efforts to system recovery and security checks."
Kyowon reported the breach signs to the Korea Internet & Security Agency (KISA) and relevant investigative authorities immediately after recognizing the incident. It is also working with related agencies and coordinating with an outside security firm to analyze the cause of the incident and the extent of the damage in detail.
Whether personal information has been leaked is still being verified. If a leak of personal information is confirmed, Kyowon plans to promptly and transparently notify customers in accordance with relevant laws and procedures and provide necessary protective measures. It also plans to sequentially provide confirmed facts such as the cause of the incident, the extent of the damage, and the recovery status through its official website.
A Kyowon official said, "We deeply apologize for the concern caused to our customers by this incident," and added, "Experts have been deployed and are working on rapid system recovery and data integrity checks, and we will do our best to prevent a recurrence in the future."