LY Corporation, a major player in the tech industry, has officially confirmed the Line data breach, previously reported by The Cyber Express. The Line Messenger breach, resulting from unauthorized access to an affiliate’s computer system in October, has prompted a swift and transparent response from LY Corporation.
In response to an inquiry by The Cyber Express, LY Corporation’s Public Relations team provided their official statement regarding the cyber incident.
The corporation issued a notice along with an apology, aiming to address the information leakage resulting from the unauthorized access incident. Below are the specifics of the occurrence.
Update and details of the Line Data Breach
The Line Messenger breach occurred due to malware infecting a PC owned by an employee of a subcontractor shared by LY Corporation and NAVER Cloud Corporation. This allowed unauthorized access to the former LINE Corporation’s internal system on October 9.
LY Corporation’s security team detected suspicious access on October 17, leading to a thorough investigation that confirmed the unauthorized access from an external source on October 27.
As of November 27, the compromised data includes personal information of users, business partners, employees, and other personnel.
Notably, 302,569 records of user information, 86,105 records of business partner information, and 51,353 records of employee and personnel information have been confirmed or potentially leaked.
Timeline of Line Messenger Breach incident
The LY Corporation has shared a timeline of the incident, stating that the breach started on October 9, 2023, when unauthorized access to LY Corporation’s servers via an affiliate’s servers was performed.
On October 17, 2023, LY Corporation detected suspicious access and initiated a security investigation. Following this, on October 27, the organization confirmed a “high possibility” of external unauthorized access.
The next day, the organization performed a password reset and sequential cutoff of server access. On November 27, notifications about the incident were sent to affected users, employees, and other personnel.
Moreover, LY Corporation is actively taking steps to mitigate the impact of the incident. Individual notifications are being sent to users, business partners, and customers. Additionally, necessary measures such as resetting passwords, blocking external access, and enhancing network access management are underway.
What’s next for Line Messenger incident?
LY Corporation urges affected parties to be cautious of potential fraudulent messages and phishing scams. While there is nothing to request from users at this time, the corporation emphasizes the importance of remaining vigilant in the face of potential cyber threats.
Looking ahead, LY Corporation plans to enhance network access management and separate the authentication system handling employee information from NAVER Cloud Corporation.
The company is also committed to strengthening safety management procedures for subcontractors and engaging external enterprises to validate and enhance preventive measures.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.
