![[The AI Show Episode 144]: ChatGPT’s New Memory, Shopify CEO’s Leaked “AI First” Memo, Google Cloud Next Releases, o3 and o4-mini Coming Soon & Llama 4’s Rocky Launch](https://www.marketingaiinstitute.com/hubfs/ep%20144%20cover.png)
.jpg?width=1920&height=1920&fit=bounds&quality=70&format=jpg&auto=webp#)
![Hands-On With 'iPhone 17 Air' Dummy Reveals 'Scary Thin' Design [Video]](https://www.iclarified.com/images/news/97100/97100/97100-640.jpg)
![Mike Rockwell is Overhauling Siri's Leadership Team [Report]](https://www.iclarified.com/images/news/97096/97096/97096-640.jpg)
![Instagram Releases 'Edits' Video Creation App [Download]](https://www.iclarified.com/images/news/97097/97097/97097-640.jpg)
![Inside Netflix's Rebuild of the Amsterdam Apple Store for 'iHostage' [Video]](https://www.iclarified.com/images/news/97095/97095/97095-640.jpg)
SK Telecom reveals cyberattack, customer USIM data stolen could be used in attacks
Attack on SK Telecom could affect users.
- SK Telecom confirmed suffering a malware infection on a Saturday night
- The attackers tried to steal USIM data
- Law enforcement and government has been notified
SK Telecom, South Korea’s largest telecommunications provider, suffered a malware infection recently, through which threat actors tried to grab customer USIM information.
The attack happened in mid-April 2025, at night between Saturday and Sunday, when most employees were away for the weekend.
The company’s IT team spotted the intrusion and moved quickly to isolate the affected endpoints and prevent more data from being stolen. In the morning, SK Telecom notified relevant authorities and started an investigation to determine exactly what happened and what was stolen.
Keeper is a cybersecurity platform primarily known for its password manager and digital vault, designed to help individuals, families, and businesses securely store and manage passwords, sensitive files, and other private data.
It uses zero-knowledge encryption and offers features like two-factor authentication, dark web monitoring, secure file storage, and breach alerts to protect against cyber threats.
Preferred partner (What does this mean?)View Deal
GitHub not affected
So far, no data appeared on the dark web and no one took responsibility for the attack.
A USIM (Universal Subscriber Identity Module) is the successor of the old SIM card. It’s used in 3G, 4G, and 5G mobile networks and is found in most devices with cellular connectivity.
At its core, a USIM authenticates the device’s identity on a network, stores subscriber data (International Mobile Subscriber Identity, authentication keys, contacts, and sometimes text messages), encrypts the information passing through, and enables secure access to mobile services such as calls, data, or texts.
A cybercriminal could use the data to close the SIM, track people’s location, bypass app security, or eavesdrop on communications.
In other words, this was a rather dangerous attack. That is why the company strengthened blocks of USIM swaps and abnormal authentication attempts. Furthermore, it said it would immediately suspend service for accounts linked to suspicious activity.
SK Telecom is the biggest telecommunications provider in South Korea, servicing some 34 million subscribers (roughly 49% of the market). The rest is mostly divided between KT and LG U+.
It offers mobile services, internet and IPTV, AI and cloud services, IoT solutions, smart factory and connected car technology, quantum cryptography communication, and more. It was one of the world’s first companies to launch commercial 5G, back in 2019.
Via BleepingComputer
You might also like
- NTT admits hackers accessed details of almost 18,000 corporate customers in cyberattack
- Take a look at our guide to the best authenticator app
- We've rounded up the best password managers
