Marketplace Morning Report

Episode: The Data Breach That Hit Two-Thirds of a Country
Host: Gideon Long, Marketplace/BBC World Service
Aired: December 29, 2025

Overview

This episode centers on a colossal data breach affecting South Korean e-commerce giant Coupang, which put at risk personal information for nearly two-thirds of the country’s population. The discussion covers details of the breach, the company's response, broader trends in cyberattacks this year, and their social and economic impacts. The episode also provides brief updates on global business news and a historical discovery in Scotland.

Key Discussion Points & Insights

1. The Coupang Data Breach Crisis

Segment: [00:43–02:54]

• Scale of the Breach:

  • Coupang, known as the "Amazon of South Korea," faced a breach exposing data for as many as 33 million accounts—equivalent to about two-thirds of South Korea's population.
  • Despite early fears, the company later confirmed that only about 3,000 accounts' data was stolen.
  • Compromised details included names, email addresses, and residential addresses.

• Timeline & Company Response:

  • The breach began in June 2025, but Coupang didn't discover it until November—almost a five-month delay.
  • CEO publicly apologized for not catching the breach sooner.
  • Early on, 4,500 accounts showed signs of abnormal activity but the significance was not fully realized.

• Perpetrator & Ongoing Investigation:

  • The breach is believed to have been carried out by a former Coupang employee who had worked on authentication systems.
  • Data was copied to the individual's personal computer; no evidence of further distribution or sale.
  • Critically, there is no indication that financial data (credit cards, passwords) were accessed.
  • The issue is under parliamentary review, with hearings scheduled.

Notable Quote:

"It was personal data for almost 2/3 of the South Korean population... pretty much most of the adult population."
— Archana Shukla, [01:11]

2. Broader Business & Market Updates

Segment: [02:55–03:33]

• Commodities:
  • Copper prices surge above $12,000 a ton amid supply concerns.
• Tech Markets:
  • Apple overtakes China's Vivo as India's largest smartphone vendor, selling over 6.5 million iPhone 16s in 2025.

3. Global Surge in Corporate Hacks

Segment: [03:33–06:28]

• 2025: Record Year for Cyberattacks:

  • High-profile hacks affected major retailers in the UK (Marks & Spencer, Co-Op, Harrods), causing real-world supply disruptions such as empty store shelves.
  • Jaguar Land Rover was hit—halting car production and impacting the UK economy to the extent that a cyberattack was officially cited as a drag on GDP.
  • Japanese brewer Asahi was also targeted.

• Who’s Behind the Attacks?

  • Continuation of ransomware attacks tied to Russian-speaking cybercriminals.
  • Distinct resurgence of teenage English-speaking hacker collectives, conducting major attacks, including on airlines (e.g., Qantas).
  • Many attacks employed "social engineering"—tricking help desks and employees to gain access.

Notable Quotes:

"This year we've seen some very visible and tangible impacts... not just the companies affected but society in general."
— Joe Tidy, [03:40]

"We saw for the first time this year [a company] mention the cyber attack as having a natural effect on the economic output of the country."
— Joe Tidy, [04:20]

"Quite often it is people using con men like tactics to trick their ways into companies."
— Joe Tidy, [05:52]

4. Looking Forward: Lessons for 2026

Segment: [05:21–06:28]

• Wake-up Call for Corporate Cybersecurity:
  • Companies are expected to reconsider cyber risk, not just as a technical issue but a major operational and societal threat.
  • Social engineering, rather than just technical trickery, is now front and center.

Notable Quote:

"You'd like to think it's a bit of a wake up call... I thought of cyber as near the top of my risk register, but I didn't expect it to have this much impact."
— Joe Tidy, [05:28]

5. Other Notable Stories

Segment: [06:29–07:14]

• Historical Discovery:
  • A 900-year-old silver coin, the oldest minted in Scotland, found by a metal detectorist and now acquired for a museum.

Memorable Moments & Quotes (With Timestamps)

• On the scale of Coupang’s breach:
  “Personal data for almost 2/3 of the South Korean population... pretty much most of the adult population.”
  — Archana Shukla [01:11]

• On the delayed discovery:
  "The breach of the servers apparently began in June... but the company didn't notice anything until November."
  — Gideon Long [01:39]

• On cybercrime’s effect on society:
  "This year we've seen some very visible and tangible impacts..."
  — Joe Tidy [03:40]

• On social engineering as a threat:
  "Quite often it is people using con men like tactics to trick their ways into companies..."
  — Joe Tidy [05:52]

Timestamps for Key Segments

• [00:43–02:54] — Coupang data breach details with Archana Shukla
• [02:55–03:33] — Global market/business news (Copper, Apple)
• [03:33–06:28] — 2025 cyberattack overview and discussion with Joe Tidy
• [06:29–07:14] — Discovery of Scotland’s oldest coin

Tone & Delivery

The tone is clear, informative, and urgent—underscoring the scale and seriousness of the cybersecurity crisis while providing actionable awareness for business leaders and consumers alike. Expert guests, like BBC correspondents, provide context that’s both accessible and authoritative.

This succinct episode delivers a wake-up call on cyber risks for businesses and individuals, using the Coupang breach and a year of high-profile attacks as stark reminders that cybersecurity vigilance is critical in 2026 and beyond.