Kyowon suffered a ransomware attack that resulted in a data leak. Ransomware is a cyberattack that encrypts systems and data and demands money in exchange for restoring them.
Kyowon said on the 13th in a press release that it confirmed in the afternoon the day before signs that data had been leaked externally due to a ransomware attack that occurred around 8 a.m. on the 10th and completed an additional report to the Korea Internet & Security Agency (KISA).
It is conducting an investigation with relevant authorities and an external security firm to determine the scale of the leak and whether customer information was included in the data.
Kyowon has taken follow-up measures to prevent secondary incidents and damage, including: ▲ a full audit of companywide systems ▲ an in-depth analysis of security vulnerabilities ▲ strengthened 24-hour real-time monitoring of abnormal access and external connections ▲ a review and enhancement of the entire incident response process.
If a customer information leak is finally confirmed, it will take necessary measures in accordance with relevant laws and promptly inform customers of the findings.
A Kyowon official said, "We fully recognize our heavy responsibility for this matter and deeply apologize for the concern caused."
The official added, "We will thoroughly review every step until the cause of the incident is clearly identified and completely overhaul our security system to prevent a recurrence," and "We will do our best to protect customers and restore trust."