Interpark, the popular South Korean ecommerce site, has been compromised.
According to Korea Herald, the bad guys stole over 26.6 pieces of personal information about more than 10 million Interpark registered users. The Korea Herald reports that according to the ICT Ministry and the Korea Communications Commission the bad guys used a spearphishing attack which targeted one employee. Using the access created by the initial spearphishing attack, the bad guys were able to spread malware throughout Interpark’s network and steal the users’ personal information.