Tving Data Breach: CEO Apologizes, Millions of Users Affected – Veri Sızıntısı
Live
Search
Company
About Founder's Note Press & Media Privacy Policy Terms of Service FAQ Brand Kit
Products
HUBOne HUBCorp Coming Soon Veri Sızıntısı Android Coming Soon Veri Sızıntısı iOS Coming Soon Veri Sızıntısı Huawei Coming Soon Breach Radar Argus Flow Argus Engine LivePlatform
Technologies
What is Argus AI? Try on HUBOne What is Argus Flow? What is Argus Engine?
Blog Contact

Tving CEO Apologizes For Massive Data Leak

South Korean streaming giant Tving has publicly apologized for a colossal data breach affecting millions of its users. Leaked data includes personal information and viewing habits.

The Tving logo combined with a fragmented and pixelated data breach concept.

What Happened

Tving, one of South Korea's most popular streaming platforms, is now the star of one of the biggest cybersecurity fiascos in recent memory. The company's CEO, Choi Jin-woo, stood before cameras to apologize to both users and investors. The reason for this public display of contrition? The leak of the company's entire user database. And yes, we mean the whole thing. The story broke when a cybersecurity researcher discovered a massive data package for sale on the dark web. At first, it was just a rumor, but Tving's official statement confirmed everyone's worst fears. The information of over 15 million active and former users is now in the hands of cybercriminals. The CEO's statement was blunt: "We have broken your trust. We know this is difficult to repair. But we will do everything in our power." How much comfort those words will be to the millions whose data is already out there is a massive question mark.

The Data That Was Exposed

What makes this leak more dangerous than others is the sheer variety of the stolen data. The attackers didn't just get a simple user list. Here's the full breakdown:

  • Full Names and Usernames: The first step to confirming your identity.
  • Email Addresses and Phone Numbers: Perfect for contacting you directly and launching phishing attacks.
  • Dates of Birth: A key piece of information used in identity theft.
  • Hashed Passwords: Yes, the passwords were encrypted. However, it's unclear what hashing algorithm Tving used and how strong it was. Weak encryption means passwords can be cracked in a short amount of time.
  • Viewing History: This might be the most personal data of all. Which series you watched and when, which movie you abandoned halfway through, your interests... This data can be used to create highly targeted and convincing scam scenarios. Just imagine: you get an email about your favorite show. How much more likely are you to click on it?
  • Partial Payment Information: The last four digits of credit cards, expiration dates, and card type. While not enough to withdraw money on its own, when combined with other information, it's golden for a scammer trying to convince you they're a bank official.
  • IP Addresses and Device Information: Technical details like where you connect from and what device you use.
The picture that emerges when all this data is combined is frightening. Criminals can create a digital clone of you. This is not a situation that can be dismissed by simply changing a password.

How the Attack Happened

According to Tving's statement, the root cause of the attack was human error. A cloud-based database server used by the company (specifically, an Elasticsearch cluster) was misconfigured. This means that this enormous trove of data, which should normally only be accessible from within the company, was left open to the internet without a password for some time. For how long? The company says for a "short period," but cybersecurity experts say this kind of data can be discovered and copied within minutes. All the attackers had to do was run automated tools that scan the internet for such open databases. Someone found it and quietly copied everything. It took Tving weeks to even notice. This is a painful example of a failure to implement even the most basic cybersecurity measures.

Has your email been leaked? Check for free — results in seconds.

Check Now →

Who Is Affected

If you have or ever had a Tving account, you have been affected by this breach. Period. Being a former user doesn't mean your data was deleted. Many companies retain old user data for legal or marketing purposes. The leak is not limited to users in South Korea; subscribers in all countries where Tving operates are at risk. The platform has a considerable international user base, especially due to the global popularity of K-dramas and K-pop. Therefore, if you're a Tving user from outside Korea, this news concerns you directly. It's impossible to know where your data is now or who has it. That's why you have to be proactive. Keeping track of your own data is no longer a luxury, it's a necessity. Using a Data Breach Search tool to see if your data has been exposed online is one of the first steps you should take.

What You Can Do

Let's move beyond the classic "change your password" advice. This incident demands more. Here are specific, actionable steps for you:

  1. Break the Password Chain: If you used the same password for Tving anywhere else, those accounts are now in grave danger. Change those passwords immediately. Prioritize your email, social media, and banking accounts.
  2. Be Wary of Your Viewing History: Prepare for spear-phishing attacks tailored to you. For instance, never trust an email or SMS with a subject like, "Exclusive information on the new season of 'Gyeongseong Creature' you watched on Tving." They will use what they know against you.
  3. Monitor Your Bank Accounts: Scrutinize your credit card statements. If you see any unrecognized charges, especially small ones, contact your bank immediately. Fraudsters often test if a card works with a small purchase first.
  4. Activate Two-Factor Authentication (2FA): If you haven't already, turn on 2FA for all your important online accounts (email, social media, etc.). This is an extra layer of security that prevents access to your account even if your password is stolen.
  5. Stay Informed: This breach could just be the beginning. Follow reliable sources to keep up with future developments concerning your data. Platforms that provide up-to-date Data Breach News can help you understand what you need to be prepared for.

What the Company Is Saying

CEO Choi Jin-woo's apology was the first public step. In its official statement, the company said it would notify all affected users via email. They also pledged to offer users one year of free identity theft protection and credit monitoring services. The company added that they have hired an independent third-party cybersecurity firm to conduct a full audit of their entire infrastructure. Choi stated, "We have learned from this incident and will do whatever it takes to elevate our security protocols to the highest level. Regaining the trust of our users is our top priority." However, the cybersecurity community remains skeptical of these statements. Questions about how such a basic error was made and why it went unnoticed for so long still linger. Tving has a long and difficult road ahead, not just to repair its technical infrastructure, but also its shattered reputation.

Source

https://databreaches.net/2026/06/03/kr-tving-ceo-apologizes-for-unprecedented-data-leak/?pk_campaign=feed&pk_kwd=kr-tving-ceo-apologizes-for-unprecedented-data-leak

Share This Article
X LinkedIn WhatsApp
← Previous Post The Medibank Breach A Retrospective Look Years Later Next Post → IMA Diligence Data Breach Hits Half a Million People

Weekly Newsletter

Curated data breach news delivered to your inbox every week.