Coupang CEO Resigns Amid Unprecedented Data Breach Impacting Millions
In a significant development for South Korea’s e-commerce sector, Coupang’s Chief Executive Officer, Park Dae-jun, has stepped down following a massive data breach that compromised the personal information of over 33 million customers. This incident, one of the most severe in the nation’s history, has prompted widespread concern and governmental scrutiny.
The Breach Unveiled
The breach, which began in June 2025 but remained undetected until November, exposed sensitive customer data, including names, email addresses, phone numbers, shipping addresses, and certain order histories. Notably, payment details and login credentials were reportedly not compromised. The unauthorized access is believed to have originated from overseas servers, with investigations pointing to a former Chinese employee who retained an active authentication key post-termination. ([reuters.com](https://www.reuters.com/sustainability/boards-policy-regulation/south-korean-e-commerce-firm-coupang-says-337-million-customer-accounts-breached-2025-11-29/?utm_source=openai))
Leadership Response
In response to the crisis, Park Dae-jun expressed profound regret, stating, I deeply apologize to the public for the disappointment caused by the recent personal data incident. I take full responsibility for both the incident and the handling of the case, so I have decided to step down from all my positions. ([koreatimes.co.kr](https://www.koreatimes.co.kr/business/companies/20251210/coupang-ceo-resigns-over-data-breach?utm_source=openai)) Following his resignation, Coupang’s U.S.-based parent company appointed Harold Rogers, the Chief Administrative Officer and General Counsel, as interim CEO. Rogers is tasked with addressing the fallout, restoring customer trust, and enhancing the company’s cybersecurity measures. ([nasdaq.com](https://www.nasdaq.com/articles/coupang-ceo-park-dae-joon-resigns-after-data-leak-names-harold-rogers-interim-ceo?utm_source=openai))
Governmental and Public Reaction
The South Korean government has taken swift action in the wake of the breach. Prime Minister Kim Min-seok announced a thorough investigation into the incident, emphasizing the need for stringent measures against any legal violations. Law enforcement agencies have already conducted raids on Coupang’s Seoul headquarters as part of the ongoing probe. ([reuters.com](https://www.reuters.com/world/asia-pacific/coupang-ceo-resigns-after-online-retailer-hit-by-massive-data-breach-2025-12-10/?utm_source=openai))
President Lee Jae Myung has called for increased penalties for corporate negligence in data protection, highlighting the breach as a wake-up call for the industry. He criticized Coupang’s failure to detect the breach for five months and stressed the necessity for a cultural shift in data protection practices, especially in the digital age. ([reuters.com](https://www.reuters.com/sustainability/boards-policy-regulation/south-koreas-lee-calls-tougher-penalties-after-coupang-data-breach-2025-12-02/?utm_source=openai))
Customer Impact and Legal Implications
The breach has affected approximately 33.7 million customers, nearly two-thirds of South Korea’s population. While financial information was not compromised, the exposure of personal data raises concerns about potential phishing and impersonation scams. Coupang has advised customers to remain vigilant and report any suspicious communications. ([thecyberexpress.com](https://thecyberexpress.com/coupang-ceo-resigns-amid-data-leak/?utm_source=openai))
Legal repercussions are also on the horizon. Over 10,000 citizens are considering a class-action lawsuit seeking damages of at least 100,000 won ($68) per person. The incident has reignited debates over the adequacy of South Korea’s data protection laws and the need for more robust enforcement mechanisms. ([reuters.com](https://www.reuters.com/sustainability/boards-policy-regulation/south-korean-police-probe-massive-data-leak-coupang-2025-12-01/?utm_source=openai))
Coupang’s Commitment to Security
In the aftermath of the breach, Coupang has pledged to bolster its cybersecurity infrastructure to prevent future incidents. The company is collaborating with governmental agencies, including the Ministry of Science and ICT, the National Police Agency, and the Korea Internet & Security Agency, to address the breach and implement enhanced security protocols. ([thecyberexpress.com](https://thecyberexpress.com/coupang-ceo-resigns-amid-data-leak/?utm_source=openai))
Interim CEO Harold Rogers has outlined a comprehensive plan focusing on reducing customer anxiety, managing internal and external challenges, and stabilizing overall operations. The leadership change signifies the company’s commitment to taking decisive action in response to the crisis. ([nasdaq.com](https://www.nasdaq.com/articles/coupang-ceo-park-dae-joon-resigns-after-data-leak-names-harold-rogers-interim-ceo?utm_source=openai))
Industry-Wide Implications
The Coupang data breach serves as a stark reminder of the vulnerabilities inherent in the digital economy. It underscores the critical importance of robust data protection measures and the need for companies to prioritize cybersecurity to maintain consumer trust. The incident is likely to prompt other organizations to reevaluate their security protocols and compliance with data protection regulations.
Conclusion
Coupang’s massive data breach and the subsequent resignation of CEO Park Dae-jun have sent shockwaves through South Korea’s business community. As the company works to rebuild its reputation and strengthen its security measures, the incident serves as a cautionary tale for the industry at large. The emphasis on accountability, both at the corporate and governmental levels, highlights the evolving landscape of data protection and the imperative for organizations to adapt to emerging threats in the digital age.
