GS Retail announced on the 6th that personal information of 90,000 customers was leaked due to a website hacking attack that occurred between the 27th of last month and the 4th of this month. The leaked personal information is estimated to include seven items: name, gender, date of birth, contact information, address, ID, and email.
GS Retail stated that after becoming aware of this fact, it blocked the IP addresses attempting the hacking and locked the customer accounts to prevent any logins. Additionally, it temporarily closed pages displaying personal information.
GS Retail explained that the hacking technique identified this time is known as 'credential stuffing,' where accounts and passwords gathered through various channels are randomly input to log in and steal personal information.
To prevent secondary damage, GS Retail urged customers to immediately change their passwords and report any suspicious phone calls or emails that may indicate misuse of personal information.
A GS Retail representative said, “We deeply apologize to our customers for the inconvenience and concern caused by this incident. We will make every effort to strengthen our system security and thoroughly protect personal information in the future.”