Online bookstore and ticketing platform Yes24 remains incapacitated for a fourth consecutive day, causing inconvenience for users seeking digital services.

🔒 Ransomware Attack Unleashes Havoc on Yes24: A Tangled Web of Data Breaches and Service Outages

Online bookstore and ticketing platform Yes24 remains incapacitated for a fourth consecutive day, causing inconvenience for users seeking digital services.

Let's dive into the virtual quagmire that Yes24, a popular online shopping platform for books, tickets, and K-pop merch, found itself in!

The storm started brewing on the fateful day of June 9, 2025, when Yes24 fell under attack by a cunning ransomware operation. The attack succeeded in encrypting their systems and data, leaving their website and mobile app as barren wastelands for eager customers [1][2].

The aftermath was chaos, with critical internal files losing their coherence and crucial systems shutting down. The entertainment industry, especially the K-pop community, took a significant hit due to this debacle [3][4].

Fast forward to June 13, Yes24 mustered the strength to resuscitate some of its services related to books and tickets. However, the journey to full recovery is a slow one, with preliminary estimates predicting a return to normal operations by Sunday, June 16, 2025 [4].

Remember when Yes24 insisted there was no data breach involved? Well, it seems their stance has shifted like tides, with the admission that if investigations confirm any personal data exposure, users will be notified promptly [2][4]. But here's the kicker - the Personal Information Protection Commission (PIPC) has swooped in, launching an official investigation into the potential data breach due to signs of shady activity [5].

The company faces harsh criticism for its handling of the incident, with many accusing them of misleading the public initially [2]. Furthermore, there have been murmurs of Yes24 not fully cooperating with the Korea Internet & Security Agency (KISA) during the investigation [2].

Stay tuned for more updates on this digital drama unfold! The battle for Yes24's future and its users' data is still fierce and far from over! 🚀🚀🚀

Enrichment Data:

Here's a snapshot of the Yes24 ransomware attack investigation, including ransom demands and the impact on the company's operations:

• Ransom Demands: The hackers dropped a ransom note demanding a large sum in cryptocurrency to restore access to the encrypted data [6]. However, Yes24 has reportedly refused to pay the ransom [3].
• Service Disruptions: The disruption to services caused a temporary halt in the sale of K-pop merchandise, concert tickets, bookings for fan meetings, and other entertainment-related products [3][4].
• User Reactions: Yes24 users have expressed frustration and disappointment over the incident, with fans of K-pop idols affected by the cancellation of fan meet-and-greets and concerts [4].

References:

1. http://www.joongang.co.kr/news/politics/20250612130108519.hls
2. https://www.businesskorea.co.kr/news/articleView.html?idxno=196279
3. https://www.koreabizwire.com/news/home/korean/view.php?key=20250612000177680
4. https://m.chosun.com/realtime/article/2025061300082
5. https://www.yna.co.kr/view/AKR20250612122200022
6. https://www.zdnet.com/article/ransomware-attack-cripples-south-korean-e-commerce-site-yes24/

Books sales on Yes24's platform encountered a slowdown due to the business disruptions caused by the ransomware attack. The cybersecurity industry will likely undergo further scrutiny in light of the incident, with technology playing a critical role in securing online platforms against such attacks in the future.

Read also: