Korean Air employee data leak via KC&D breach
Data Leak
Summary
Hide ▲
Show ▼
The airline disclosed a data breach that exposed employee names and bank account numbers, creating fraud and impersonation risk for Korean Air staff. The leak followed a hack at KC&D, the carrier's in-flight catering supplier and former subsidiary, and local reports say attackers exfiltrated about 30,000 records. The later posting of the data by the Clop ransomware gang on a dark web leak site raised the risk of downstream misuse.
Related Happenings
ShellForce-affiliated leak site publishes stolen identity, corporate, and résumé records
Data Leak
First: 09.02.2026 23:14
Last: 09.02.2026 23:14
Sources 1
About this happening:
A **ShellForce**-affiliated leak site is publicly posting **stolen identity records**, **corporate data**, and **résumé databases**, turning intrusions into immediate exposure ris...
ShellForce-affiliated leak site publishes stolen identity, corporate, and résumé records
Data LeakAbout this happening: A **ShellForce**-affiliated leak site is publicly posting **stolen identity records**, **corporate data**, and **résumé databases**, turning intrusions into immediate exposure ris...
ShinyHunters data-leak site exposing stolen attack data
Data Leak
First: 31.01.2026 17:02
Last: 31.01.2026 17:02
Sources 1
About this happening:
The **ShinyHunters** extortion gang launched a **data-leak site**, beginning to publish data tied to the theft campaign and raising the exposure risk for victims.
ShinyHunters data-leak site exposing stolen attack data
Data LeakAbout this happening: The **ShinyHunters** extortion gang launched a **data-leak site**, beginning to publish data tied to the theft campaign and raising the exposure risk for victims.
Kyowon Group external data leak affecting customer data
Data Leak
First: 14.01.2026 23:49
Last: 14.01.2026 23:49
Sources 1
About this happening:
**Kyowon Group** confirmed an **external data leak** tied to its **January 2026** ransomware incident, creating a real risk that **customer information** was exposed. The company...
Kyowon Group external data leak affecting customer data
Data LeakAbout this happening: **Kyowon Group** confirmed an **external data leak** tied to its **January 2026** ransomware incident, creating a real risk that **customer information** was exposed. The company...
Kyowon Group hit by ransomware attack
Incident
First: 14.01.2026 23:49
Last: 14.01.2026 23:49
Sources 1
About this happening:
The **Kyowon Group** confirmed a **ransomware attack** that disrupted operations and led to **customer data exfiltration**, creating immediate availability and exposure risk. The...
Kyowon Group hit by ransomware attack
IncidentAbout this happening: The **Kyowon Group** confirmed a **ransomware attack** that disrupted operations and led to **customer data exfiltration**, creating immediate availability and exposure risk. The...
Clop ransomware gang campaign expands across multiple victims
Campaign
First: 02.12.2025 14:55
Last: 02.12.2025 14:55
Sources 1
About this happening:
A **Clop** extortion campaign is actively stealing data from **Oracle E-Business Suite** customers using **CVE-2025-61882**, putting multiple organizations at risk of theft and le...
Clop ransomware gang campaign expands across multiple victims
CampaignAbout this happening: A **Clop** extortion campaign is actively stealing data from **Oracle E-Business Suite** customers using **CVE-2025-61882**, putting multiple organizations at risk of theft and le...
Timeline
-
29.12.2025 15:08 2 articles · 4mo ago
Korean Air discloses employee data breach after KC&D hack
Initial DisclosureKorean Air disclosed that employee names and bank account numbers stored in its ERP system on affected servers were compromised after Korean Air Catering & Duty-Free (KC&D) was recently hacked, said it had reported the incident to relevant authorities, and warned staff to watch for impersonation emails and messages. Local reporting cited about 30,000 data records and thousands of affected employees, while Korean Air said it had not yet found evidence that the stolen data was used for fraud.
Show sources
- Korean Air data breach exposes data of thousands of employees — www.bleepingcomputer.com — 29.12.2025 15:08
- Korean Air data breach exposes data of thousands of employees — www.bleepingcomputer.com — 29.12.2025 15:08