1. Introduction to the text
This article discusses the recent data breach at Lotte Card, where 2.97 million customer records were exposed, with 44% of the sensitive credit card information stored in plain text rather than being encrypted. The article highlights the need for stricter regulations and oversight by financial authorities to ensure proper encryption of customer data.
2. Vocabulary
| Korean Word | Romanization | English Meaning | Contextual Example |
|---|---|---|---|
| 유출된 | yuchuldon | leaked, exposed | The customer information that was leaked from Lotte Card included 2.97 million records. |
| 명은 | myeongneun | name is | The name of the customer information that was leaked is CVC number. |
| 암호화가 | amhohwaga | encryption | 56% of the leaked files were encrypted, but the remaining 44% were not. |
| 해킹 | haeking | hacking | Lotte Card was hacked on the same day they received the ISMS-P security certification, exposing the flaws in the certification system. |
| 고객 | gogaeg | customer | The leaked customer information included 2.97 million customer records. |
3. The main text in both Korean and English
롯데카드에서 유출된 고객 297만 명의 개인정보가 담긴 파일 중 56%는 암호화가 됐지만 나머지 44%는 그대로 유출이 되고 말았습니다.
56% of the customer information files that were leaked from Lotte Card, containing the personal data of 2.97 million customers, were encrypted, but the remaining 44% were exposed as is.
최용혁 롯데카드 정보보호실장은 “외부로 유출된 파일은 중복으로 다운로드한 파일을 제거하게 되면 총 2708개의 파일로 확인됐고요.”라고 밝혔습니다.
Lotte Card’s Information Security Manager, Choi Yong-hyeok, stated that “after removing the duplicate files that were downloaded externally, a total of 2,708 files were confirmed to have been leaked.”
최재웅 롯데카드 마케팅본부장은 “카드 결제에 필요한 정보가 다수 포함된 고객으로 총 28만 명입니다.”라고 말했습니다.
Lotte Card’s Marketing Division Head, Choi Jae-woong, said that “a total of 280,000 customers had their payment-related information included in the leaked files.”
따라서 학계에서는 지금이라도 금융당국이 업계 자율적으로 이뤄지는 CVC번호 암호화 저장을 엄격히 감독할 필요가 있다고 주장합니다.
Therefore, the academic community argues that financial authorities should strictly supervise the industry’s voluntary efforts to encrypt and store CVC numbers, even at this stage.
서지용 상명대 경영학부 교수(한국신용카드학회장)는 “CVC 암호화가 필요한 부분이라고 생각이 되거든요.”라고 말했습니다.
Seo Ji-yong, a professor at Sangmyung University’s School of Business (and the president of the Korea Credit Card Association), said that “I think encryption of CVC numbers is necessary.”
롯데카드는 국내 최고의 보안 관리체계 인증인 ISMS-P를 획득한 당일 해킹 공격을 당해 인증제도의 허점을 여실히 드러내기도 했습니다.
Lotte Card was hacked on the same day they received the ISMS-P, the highest security management system certification in Korea, clearly exposing the flaws in the certification system.
4. Reading comprehension questions
- What percentage of the customer information files leaked from Lotte Card were encrypted?
- How many customer records were included in the leaked files that contained payment-related information?
- What is the academic community’s view on the need for financial authorities to supervise the encryption of CVC numbers?
- What security certification did Lotte Card hold when they were hacked?
- What did the Lotte Card hacking incident reveal about the security certification system?
5. Cultural and historical notes
The data breach at Lotte Card highlights the ongoing challenges in the financial industry to ensure the proper encryption and protection of customer data. This incident has prompted calls for stricter regulations and oversight by financial authorities to mandate encryption practices and address the flaws in security certification systems.