US Edition
SK Telecom Says Malware Breach Lasted 3 Years, Impacted 27 Million Numbers
- On April 19, 2025, SK Telecom, South Korea’s largest mobile carrier, identified a malware attack that compromised the Universal Subscriber Identity Module details of approximately 27 million users.
- The malware infection started in June 2022 and went undetected for nearly three years, impacting 23 servers containing SIM-related data.
- The breach compromised information such as subscriber identities, SIM authentication credentials, details on network activity, and stored messages or contact lists, thereby heightening the threat of SIM-swap attacks.
- SK Telecom stated that they have implemented technical measures to fully prevent unauthorized changes to USIM cards and devices, and committed to accepting complete responsibility for any resulting damages.
- SK Telecom temporarily halted accepting new subscribers, provided complimentary SIM card replacements to customers, and intends to bolster its security protocols while collaborating with authorities to prevent similar breaches in the future.
17 Articles
17 Articles
SKT Hacking, Chinese Hacker Group's Work, Targeting the World, Including the U.S.
(Seoul = Yonhap News) Reporter Kim Joo-hwan = A hacker group supported by the Chinese government is being pointed out as the one behind the hacking of SIM card information for SK Telecom [017670].
SK Telecom says the breach disclosed in April first began in 2022 and ultimately exposed the USIM data of 27M subscribers
Bill Toulas / BleepingComputer: SK Telecom says the breach disclosed in April first began in 2022 and ultimately exposed the USIM data of 27M subscribers — SK Telecom says that a recently disclosed cybersecurity incident in April, first occurred all the way back in 2022, ultimately exposing the USIM data of 27 million subscribers.
SKT data breach potentially leaks data from 26.9 million users
News The attack, which took place in 2022, went undiscovered for almost three years This week, a joint public–private investigation as revealed the enormous scale of a recently reported data breach impacting South Korean telco SK Telecom (SKT). The cyberattack took place on June 15, 2022, but was not reported to the Korea Internet & Security Agency (KISA) by SKT until April 22 this year, suggesting that malware remained undetected for three year…
Coverage Details
Bias Distribution
- 33% of the sources lean Left, 33% of the sources are Center, 33% of the sources lean Right
To view factuality data please Upgrade to Premium
Ownership
To view ownership data please Upgrade to Vantage
