A threat actor has allegedly breached the database of career.go.kr, a prominent South Korean career platform, compromising the personal information of 1.6 million users. The breach, purportedly carried out by @IntelBroker and @EnergyWeaponUser, has exposed a wide range of sensitive data, including usernames, encrypted passwords, contact information, career details, and more. The data was reportedly obtained in August 2024, with the threat actor claiming that the information was secured using Base64(md5) hashing.
According to the threat actor, the compromised data includes user details such as member numbers, job codes, educational backgrounds, and login information, among other critical personal identifiers. The alleged breach has raised serious concerns about the security measures in place on the platform, as the exposure of such information could lead to identity theft, fraud, and other malicious activities.
