In April 2025, SK Telecom revealed a significant security breach involving malware and backdoors that compromised their servers for nearly three years, affecting over 26 million users. The incident prompted immediate measures, including SIM replacements and enhanced security protocols, as investigators uncovered extensive malicious activity within the company’s infrastructure. #SKTelecom #WebShellAttack
Keypoints
- SK Telecom detected malicious software and isolated compromised servers in April 2025.
- The breach exposed sensitive customer data such as IMSI numbers and USIM keys.
- A joint investigation found 25 backdoor programs present on the company’s servers for up to three years.
- The intrusion originated from a web shell attack starting on June 15, 2022, with activity only logged after December 31, 2024.
- Over 26 million users were affected, leading SK Telecom to suspend onboarding and issue replacement SIM cards.
Read More: https://securityonline.info/three-year-intrusion-sk-telecom-breach-exposes-27-million-user-records/