South Korea online retailer Coupang faces US securities class action over massive data breach

Reuters02:41
South Korea online retailer Coupang faces US securities class action over massive data breach

By Mike Scarcella

WASHINGTON, Dec 22 (Reuters) - South Korean e-commerce company Coupang CPNG.N has been sued in a U.S. court in an investor class action alleging violations of securities laws after a cybersecurity breach exposed personal information of more than 33 million customers.

The lawsuit, filed last week in federal court in California, claims Coupang, its CEO and Chairman Bom Kim and its Chief Financial Officer Gaurav Anand misled investors about the company’s data security practices and failed to disclose the breach in a timely way.

Coupang, South Korea's biggest online retailer, last month apologized over the breach of personal information through unauthorized data access. In the aftermath, Park Dae-jun, chief executive of subsidiary Coupang Corp, resigned this month.

The company, dubbed the Amazon.com of South Korea, previously said it would tighten security to prevent another data leak.

Coupang did not immediately respond to a request for comment, and neither did a lawyer representing the investor who filed the lawsuit on December 18.

Coupang, which operates globally, has offices in California and other U.S. cities. The company dominates South Korea’s e-commerce market, providing same-day delivery, video streaming and food delivery. The breach has spurred investigations in South Korea.

The lawsuit said Coupang discovered on November 18 that a former employee had retained access to internal systems for months, compromising customer names, email addresses, delivery addresses and some order histories. The company said the breach did not expose payment details or login credentials.

Coupang failed to report the breach under U.S. securities rules in a timely way, the lawsuit alleged.

Coupang, according to the lawsuit, submitted U.S. regulatory filings that understated the company’s vulnerability to cyberattacks and overstated its safeguards. The complaint is seeking damages for investors who purchased Coupang securities between August 6 and December 16.

South Korea tax agency conducts special audit of Coupang following data leak, Yonhap says https://www.reuters.com/sustainability/boards-policy-regulation/south-korea-tax-agency-conducts-special-audit-coupang-following-data-leak-yonhap-2025-12-22/

Coupang CEO resigns after online retailer hit by massive data breach https://www.reuters.com/world/asia-pacific/coupang-ceo-resigns-after-online-retailer-hit-by-massive-data-breach-2025-12-10/

South Korean police probe massive data leak at Coupang https://www.reuters.com/sustainability/boards-policy-regulation/south-korean-police-probe-massive-data-leak-coupang-2025-12-01/

(Reporting by Mike Scarcella; Editing by David Bario, Rod Nickel)

((Email: mike.scarcella@thomsonreuters.com; Phone: 202-985-8228.))

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Comments

We need your insight to fill this gap
Leave a comment