Police have launched an investigation into the hacking attack at SK Telecom that led to the leak of customer’s USIM-related personal information.
The Cyber Investigation Unit of the Seoul Metropolitan Police Agency reported on the 23rd that it received a hacking damage report from SK Telecom and has begun its investigation.
SK Telecom confirmed that around 11 p.m. on the 19th, a hacker used a malware attack that resulted in the leak of customer USIM information. The leaked information includes the International Mobile Subscriber Identity (IMSI) which identifies individual USIMs, the International Mobile Equipment Identity (IMEI), and the USIM authentication key. SK Telecom stated that sensitive personal information, such as customer registration numbers, addresses, emails, and financial information, has not been leaked.
Police are expected to investigate the identity of the hacker who installed malware in the SK Telecom internal system and the scale and path of the personal information leak.
After discovering the leak, SK Telecom reported the breach to the Korea Internet & Security Agency (KISA) the next day. The Ministry of Science and ICT and other telecommunications authorities are currently investigating the exact cause and status of the incident.