Coupang Fined $400 Million Over Massive Data Breach Affecting Millions
South Korean authorities have slapped retail giant Coupang with a record-breaking fine over a data breach that impacted more than 34 million customers. Here’s the lowdown on the incident and the hefty penalty.
Admin User

South Korean authorities have imposed a record-breaking fine of $624 billion won (over $400 million) on retail giant Coupang after a data breach last year compromised the personal data of more than 34 million customers. Seoul’s Personal Information Protection Commission issued this maximum penalty on Thursday, following the discovery of the breach in December 2025.
The retail giant, which is headquartered in the U.S. but popular in South Korea and often compared to the 'Amazon of Asia,' had said the months-long data breach allowed a former employee to obtain names, email and shipping addresses, phone numbers, and order histories of about two-thirds of South Korea’s population. Coupang told BBC News that it plans to challenge the regulator's decision.
This fine represents a rare case of financial penalties being imposed against U.S.-based firms in South Korea. Korean lawmakers have accused some of their American counterparts of imposing political pressure after reports that U.S. representatives were linking the data breach with U.S.-South Korean bilateral ties, specifically targeting Coupang’s executives.
While Coupang is a major player in e-commerce and retail, the fine serves as a stark reminder of the severe consequences for companies that fail to adequately protect customer data. In contrast, U.S. companies rarely face such financial sanctions or criminal prosecution for data breaches due to a lack of laws and enforcement powers.


