undetected breach exposed millions

SK Telecom Breach

On April 18, 2025, SK Telecom, South Korea’s largest mobile carrier, revealed a significant data breach that had compromised the sensitive information of approximately 25 million subscribers, nearly the entirety of its user base. The breach targeted the Home Subscriber Server, a vital component for managing subscriber data.

Though SKT confirmed that no personal names or financial account details were exposed, the compromised information included sensitive USIM (Universal Subscriber Identity Module) data, raising serious security concerns. The breach highlighted the accountability of telecom companies regarding their data security practices.

The breach’s initial infection date was revised to August 2021, indicating that it had remained unnoticed for nearly three years. Approximately 28 infected servers were identified among the company’s extensive network of 42,605 total servers. Analysis revealed the presence of 33 different types of malware on these infected servers, suggesting an extensive infiltration into the company’s core network systems and highlighting ongoing weaknesses in cybersecurity monitoring. The lack of vulnerability scanning contributed significantly to the extended duration of the breach. Additionally, law enforcement and the National Assembly were involved in developing a SIM Protection service in response to the breach.

The breach went undetected for nearly three years, with the initial infection traced back to August 2021.

Technical failures played an essential role in the breach’s duration. SKT stored SIM authentication keys without encryption, presenting opportunities for unauthorized SIM cloning, which could exacerbate identity theft risks.

Moreover, the company failed to report the breach to authorities within the legally mandated 24-hour period, further complicating the situation. The conditions under which servers were submitted for investigation raised concerns about potential data tampering and incomplete cooperation with regulatory bodies.

In the aftermath, SK Telecom faced significant penalties and regulatory scrutiny, including a fine of up to 30 million won (approximately $22,000) under the Information and Communications Network Act.

The government mandated strengthened security measures, calling for quarterly assessments and improved data governance oversights.

As a result, the breach severely damaged SKT’s reputation and customer trust, leading to a sharp decline in stock prices and projected losses of over 7 trillion won ($5.1 billion) in the following years, forcing the company to undertake substantial financial adaptations, including investments to strengthen cybersecurity defenses.

You May Also Like

How a Sneaky Third-Party Breach Exposed Adidas Customer Info—Without Touching a Dime

A sneaky breach through a third-party service exposed Adidas customers’ personal info. Are you protected from this hidden threat? Find out now.

Millions at Risk? Aflac Data Breach May Have Compromised Health Records and Social Security Numbers

Aflac’s data breach may expose millions to identity theft, revealing troubling vulnerabilities in the insurance sector. What does this mean for your security?

Safari’s Fullscreen Flaw Lets Hackers Hijack Browsers Without Users Noticing

Safari’s fullscreen vulnerability poses a hidden threat to user privacy—could your sensitive data be at risk? Learn how to protect yourself now.