CEO Issues Public Apology

Lotte Card CEO Jo Jwa-jin has issued a formal apology to customers following a recent cybersecurity breach, promising comprehensive compensation for any resulting damages.

"As the CEO, I deeply apologize and take full responsibility for the inconvenience and concern caused to our customers due to the cyber intrusion incident," stated CEO Jo on September 4.

Incident Details and Response

On August 26, Lotte Card discovered evidence of external hacker intrusion on their online payment server. According to their investigation, no customer information leakage has been confirmed at this time.

The company has activated a company-wide emergency response system to prevent potential damage. As a proactive measure, Lotte Card will immediately proceed with reissuing cards for customers who made online payments through the affected server during the intrusion period.

Compensation Commitment

CEO Jo emphasized the company's commitment to customer protection: "I promise our customers that we will take responsibility and fully compensate for any damages incurred due to this intrusion incident."

Technical Investigation Findings

During a server inspection on August 26, Lotte Card confirmed the infection of some servers with malicious code. The investigation revealed and immediately removed two types of malicious code and five types of web shells on three servers.

On August 31, the company discovered traces of an external attacker attempting to extract approximately 1.7GB of data from the online payment server. Lotte Card reported the incident to financial authorities on September 1.