
In a decisive move to bolster public confidence and enhance its cybersecurity measures, SK Telecom has unveiled a substantial KRW 700 billion (approximately USD 500 million) investment plan. This initiative comes on the heels of a significant cybersecurity breach that cast a shadow over customer privacy and data security, raising urgent questions within the telecom sector.
The company has rolled out its Accountability and Commitment Program, a comprehensive four-part strategy aimed not only at restoring trust but also at enhancing operational transparency. This program features key components such as the Customer Assurance Package, the Information Protection Innovation Plan, a dedicated Customer Appreciation Package, and a Subscription Cancellation Fee Waiver.
SK Telecom has reinforced its Customer Assurance Package, initially launched in response to the incident, to ensure robust protection for its users. The company has firmly committed to safeguarding customer data and has vowed to resolve any lingering issues promptly.
Addressing the root of the crisis, SK Telecom plans to invest in an extensive overhaul of its information protection system over the next five years. This effort will be anchored by the Information Protection Innovation Plan, which aims to align the company’s security framework with the stringent standards set forth by the U.S. National Institute of Standards and Technology’s Cybersecurity Framework (CSF). The ambitious target? To establish itself as a leader in cybersecurity within Korea by 2028 and to gain global recognition in the same domain within five years. Talk about setting the bar high!
To express gratitude to customers for their loyalty amid recent trials, SK Telecom has introduced the Customer Appreciation Package. The company intends to waive subscription cancellation fees for those choosing to end their contracts, an action that underscores its commitment to transparency and fairness during this challenging time.
The company first detected suspicious activity on April 19 and swiftly alerted the Korea Internet and Security Agency (KISA). An ensuing investigation revealed that the breach, which lasted nearly three years from August 2021 to April 2024, allowed hackers to infiltrate SK Telecom’s systems using 33 different types of malware. Alarmingly, this breach exposed sensitive data related to 25 million users, including phone numbers and international mobile subscriber identity (IMSI) numbers. CEO Yoo Young-sang labeled this incident as “the worst hacking case in the history of the telecom industry” during a National Assembly hearing in May.
What prompted SK Telecom’s recent investment in cybersecurity?
The investment follows a significant cybersecurity breach that raised serious concerns about customer privacy and data protection, prompting the company to take immediate action to rebuild trust.
What are some key features of SK Telecom’s Accountability and Commitment Program?
The program includes the Customer Assurance Package, Information Protection Innovation Plan, Customer Appreciation Package, and a Subscription Cancellation Fee Waiver, all designed to enhance transparency and strengthen customer relationships.
How extensive was the cybersecurity breach affecting SK Telecom?
The breach, which lasted nearly three years, compromised sensitive information from up to 25 million users, marking it as a catastrophic incident in the telecom sector’s history.