Security News > 2023 > March > South Korea fines McDonald's for data leak from raw SMB share
In a separate incident, another 766,846 burger-buyers whose data should have been destroyed after a retention period expired also saw their info leak, attracting a ₩10 million wrist slap.
The company therefore coughed up info about 1,540 customers, and earned ₩40 million in fines.
Samsung Securities did a lousy job securing a web server, an error that saw data describing 48,122 users leak.
The data was visible for a month, earning the chaebol a ₩100 million fine.
The commission also fined local outfits iMarket, JK Club, and Kara for leaking customer info.
Kara's fail was spectacular: it exposed admin creds to a search engine, and data inevitably leaked.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/03/23/south_korea_privacy_fines_mcdonalds/
Related news
- Telefónica confirms internal ticketing system breach after data leak (source)
- FBI, Europol, and NCA Take Down 8Base Ransomware Data Leak and Negotiation Sites (source)
- North Korean APT43 Uses PowerShell and Dropbox in Targeted South Korea Cyberattacks (source)
- South Korea Suspends DeepSeek AI Downloads Over Privacy Violations (source)
- Data Leak Exposes TopSec's Role in China’s Censorship-as-a-Service Operations (source)