The home services platform "Soomgo" reported to authorities that it received threats from a hacker claiming to have stolen personal information. The company said there has been no indication so far of an actual data leak and noted it is investigating the facts with an external security firm.
According to the industry on the 11th, Brave Mobile, which operates Soomgo, received a message at the end of last month from a hacker claiming "customers' personal information was leaked," along with a demand for payment. The company then reported the matter to security authorities and began an internal investigation and security review.
Information that could potentially have been exposed includes activity names (nicknames) of registered professional (master) members, internal identification numbers, and "Soomgo Cash" top-up histories. Whether some customers' "Soomgo Pay" payment information was leaked is under investigation. Top-up and payment information included the card issuer's name and portions of the card number with masking.
Soomgo said in a notice on its website that "it has not been clearly confirmed whether a personal information leak occurred, but please strengthen security to prevent any potential damage." The company asked members to be cautious about clicking links in emails or text messages of unknown origin and to change their account passwords.
Brave Mobile said it provided individual guidance to users who might be affected and carried out security vulnerability checks and remediation. It also said it strengthened monitoring for abnormal access and began an investigation in cooperation with an external security firm.
The company said an initial review found no objective indication confirming an actual leak of personal information. However, it is continuing to verify the facts related to the hacker's claims and said it is also awaiting the results of an investigation by relevant authorities.
Soomgo is short for "hidden master," a home services brokerage platform that connects users and professionals for everything from moving, cleaning, and appliance installation to private lessons. Users enter location, budget, service type, and more to send a request, and professionals who meet the criteria propose quotes and profiles. According to the company, as of last year, cumulative sign-ups totaled 14 million and monthly visitors were about 5 million.
A Brave Mobile official said, "So far we have not found specific evidence supporting hacking or a data leak," adding, "Since the incident, we have been conducting cyber crisis response drills, security system monitoring, and internal employee training to strengthen security." The official added, "An investigation by the responsible authority is scheduled," and said, "At this point, it is difficult to specify when confirmation (such as whether personal information was leaked) can be made."