Security News > 2023 > March > South Korea fines McDonald's for data leak from raw SMB share

In a separate incident, another 766,846 burger-buyers whose data should have been destroyed after a retention period expired also saw their info leak, attracting a ₩10 million wrist slap.
The company therefore coughed up info about 1,540 customers, and earned ₩40 million in fines.
Samsung Securities did a lousy job securing a web server, an error that saw data describing 48,122 users leak.
The data was visible for a month, earning the chaebol a ₩100 million fine.
The commission also fined local outfits iMarket, JK Club, and Kara for leaking customer info.
Kara's fail was spectacular: it exposed admin creds to a search engine, and data inevitably leaked.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/03/23/south_korea_privacy_fines_mcdonalds/
Related news
- FBI, Europol, and NCA Take Down 8Base Ransomware Data Leak and Negotiation Sites (source)
- North Korean APT43 Uses PowerShell and Dropbox in Targeted South Korea Cyberattacks (source)
- South Korea Suspends DeepSeek AI Downloads Over Privacy Violations (source)
- Data Leak Exposes TopSec's Role in China’s Censorship-as-a-Service Operations (source)
- Browser-Based Data Leaks: 3 Biggest Data Security Challenges Today (source)
- Microsoft Adds Inline Data Protection to Edge for Business to Block GenAI Data Leaks (source)
- Cardiff's children's chief confirms data leak 2 months after cyber risk was 'escalated' (source)
- Royal Mail investigates data leak claims, no impact on operations (source)