Coupang Taiwan Reveals 33.7M-Account Breach, Launches Bug Bounty Program
Coupang Taiwan disclosed a November 2025 customer data breach that exposed details for 33.7 million global accounts, including roughly 200,000 in Taiwan. The company launched a bug bounty program and ramped up its investigation through its CISO’s presentation at CYBERSEC 2026.
1. Breach Details
In November 2025, Coupang Taiwan discovered a cybersecurity incident that exposed data from approximately 33.7 million customer accounts worldwide, including about 200,000 Taiwanese users. The compromised information reportedly included names, email addresses and hashed passwords, prompting an immediate internal security review.
2. Bug Bounty Program
To identify and remediate vulnerabilities, the company initiated a bug bounty program offering financial rewards to external researchers for reporting security flaws. The initiative aims to incentivize continuous testing of Coupang Taiwan’s systems and strengthen its defenses against future attacks.
3. CISO Presentation and Next Steps
At CYBERSEC 2026, Coupang Taiwan’s Chief Information Security Officer detailed the breach and outlined ongoing investigative measures, including forensic analysis and collaboration with third-party security firms. The CISO emphasized enhancements to encryption protocols and monitoring tools to prevent similar incidents.