SK Telecom reports hacking incident involving partial leak of user USIM data

SK Telecom's headquarters in Seoul / Courtesy of SK Telecom
SK Telecom, Korea's leading mobile carrier, said Tuesday it has reported a hacking incident involving the partial leakage of information related to customers' universal subscriber identity module (USIM) data.
The company confirmed that it detected signs of unauthorized network access on Saturday, triggered by malicious code apparently inserted by an unidentified hacker.
SK Telecom said it has launched a full investigation into the breach. No cases of misuse have been reported so far.
Upon identifying the breach, the company said it immediately deleted the malicious code and isolated the network system in question. It also notified the Korea Internet & Security Agency and the Personal Information Protection Commission of the incident.
The company has published a notice on its website informing customers of the breach while offering USIM protection services free of charge for customers who wish to take security measures.
The Ministry of Science and ICT said it has formed an emergency response team to investigate the incident and review the company's measures over user data compromise, and that it has requested SK Telecom to preserve and submit relevant records.
Authorities could issue a corrective order against SK Telecom should the investigation find flaws in the company's security management.
"A forensic analysis is currently under way, but due to the nature of the malicious code, it could take time to determine exactly what data may have been leaked," said a SK Telecom official, adding that the company will fully cooperate with the investigation.