[Alpha Biz= Kim Jisun] SEOUL, South Korea – June 11, 2025 — South Korean police have launched a formal investigation into the ransomware cyberattack that has paralyzed online bookstore YES24 for three consecutive days.
The Cybercrime Investigation Division of the Incheon Metropolitan Police Agency confirmed on Tuesday that it has opened a case to trace the hacker(s) and assess the full extent of the damage. Although the case typically falls under the jurisdiction of the Seoul Metropolitan Police, it was transferred due to a high volume of active cybercrime cases in the capital.
YES24, which has approximately 20 million registered members, has been experiencing a major service disruption since 4:00 a.m. on June 9, when the ransomware attack first hit. The attack has rendered its website and mobile app inaccessible, suspending all services including book searches, order placement, ticket reservations, e-book access, and digital library usage.
YES24 reported the incident to the Korea Internet & Security Agency (KISA) on the afternoon of June 9. In a statement on its website, the company said, “Based on our internal investigation so far, there is no evidence of personal data leakage. We will fully cooperate with the authorities and share updates as new information becomes available.”
A police spokesperson added, “We are investigating who is behind the attack and whether any customer data has been compromised.”
Alphabiz Reporter Kim Jisun(stockmk2020@alphabiz.co.kr)
