Police Accuse Coupang of Concealing Internal Laptop Analysis in Data Leak Probe
Updated (2 articles)
Suspect Identified Through Forensic Evidence Coupang’s internal investigation linked the leak to a former employee, whose laptop was recovered and examined by police [1][2]. The company says the suspect confessed to using stolen security keys to access basic information from roughly 34 million accounts [1]. Police corroborated the forensic findings, confirming the device belongs to the alleged insider [2].
Data Scope Limited to Thousands of Accounts Coupang recovered personal data affecting about 3,000 customers, all of which was later deleted and never transmitted to external parties [1][2]. The firm emphasized that no third‑party sharing occurred and that the breach’s impact remained confined to this small subset [1]. Authorities will verify the exact extent after completing their own forensic review [1].
Coupang Submitted Laptop but Withheld Analysis Seoul police allege Coupang handed over the suspect’s laptop but failed to disclose its internal analysis during questioning [1]. Police chief Park Jeong‑bo described the omission as “unusual” and warned of possible accountability if manipulation is uncovered [1]. The withheld analysis is now a focal point of the ongoing probe [1].
Police Scrutinize Coupang’s Investigation Methods Investigators are reviewing how Coupang recovered the laptop, including the use of divers and direct contact with the suspect without police coordination [2]. The review also examines whether any data tampering occurred during the laptop’s submission [2]. Findings could determine legal repercussions for the e‑commerce giant [2].
Sources (2 articles)
-
[1]
Yonhap: Police Say Coupang Withheld Internal Evidence Analysis Over Massive Data Leak: Police claim the company concealed its own forensic review of the suspect’s laptop, raising potential liability, while confirming the breach involved only about 3,000 accounts and no external data sharing .
-
[2]
Yonhap: Police Analyze Suspect's Laptop in Coupang Data Leak Probe: Police intensify forensic examination of the voluntarily submitted laptop, verify the former employee’s confession, and assess Coupang’s unconventional recovery tactics and possible legal issues .
Timeline
Dec 26, 2025 – The Seoul Metropolitan Police Agency’s cyber investigation unit intensifies forensic analysis of the laptop that Coupang voluntarily submitted, seeking to confirm the device’s ownership and its role in the data leak. Coupang identifies a former employee as the suspect, stating the individual has confessed and detailed how he accessed customer information using stolen security keys. Police recover personal data from roughly 3,000 customers and find no evidence of external transmission, while also scrutinizing Coupang’s unconventional handling of the case, including its direct contact with the suspect and the use of divers to retrieve the laptop [2].
Dec 29, 2025 – Police head Park Jeong‑bo declares Coupang’s failure to disclose its internal analysis of the leak‑linked laptop “unusual,” warning that the company could face liability if investigators uncover data manipulation or illegal activity. The investigation will determine the full scope of the breach after reviewing all secured evidence, including the laptop, which forensic work had previously linked to the former employee who used stolen keys to access basic information on nearly 34 million accounts. Coupang confirms that only about 3,000 accounts’ data were saved and later deleted, and asserts there is no evidence of any third‑party sharing [1].