Coupang, South Korea's largest online retailer, faced a major data breach affecting 33.7 million customers, traced back to a former employee who retained access to the company's internal systems after his departure. The breach, which exposed sensitive information such as names, email and physical addresses, and order details, was discovered on November 18, 2025, though it occurred months earlier on June 24. The Seoul Metropolitan Police Agency conducted a raid on Coupang's offices to gather evidence, highlighting concerns over the company's security practices. The ex-employee, a 43-year-old Chinese national who worked with Coupang from November 2022 until 2024, is believed to have fled the country. As investigations unfolded, police collected extensive records, including internal documents and access logs, to understand how he maintained system access. Coupang's CEO, Park Dae-Jun, resigned and publicly apologized for the breach, which is now considered the worst cybersecurity incident in South Korea's history. Following the breach, there has been a surge in phishing attacks targeting Coupang customers, leading to widespread impersonation incidents. The police reported receiving numerous complaints related to these scams, affecting a significant portion of the population. While Coupang is currently regarded as the victim, the authorities warned that if negligence is found, the company and responsible employees could face legal consequences.