UrsaClimb Logo

Korean cops charge teens over bike hire breach that exposed data on 4.62M riders

The Register
February 24, 2026
AI-Generated Deep Dive Summary
Two South Korean teenagers have been charged with hacking into Seoul's public bike service, Ttareungyi, exposing personal data of nearly 4.62 million users. The pair, identified as Persons A and B, allegedly gained unauthorized access to the system in June 2024 and stole sensitive information including user IDs, phone numbers, home addresses, email addresses, dates of birth, genders, and weights. This breach affected approximately 90% of Ttareungyi's registered users, with the service reportedly having around 5 million users. The teenagers were charged under South Korea's Information and Communications Network Act after authorities found evidence linking them to the attack during a separate investigation into a DDoS attack on a private mobility rental company. Person A was accused of carrying out the hack, while Person B was involved in downloading the stolen data. The two met on Telegram and shared an interest in cybersecurity, with Person B stating their intent was to test and demonstrate their skills. Despite police attempts to detain them, they were not held due to their age. This case highlights the growing threat of cyberattacks targeting public services and the potential consequences of exposing millions of users' personal information. The stolen data could be used for identity theft or fraud, raising concerns about the security of public systems. Authorities are investigating whether the data has been leaked or sold, though there is no evidence so far. The incident underscores the need for stronger cybersecurity measures to protect user data and prevent similar breaches in the future. The teenagers' involvement in such a high-profile hack also raises questions about the education and resources available to young individuals interested in cybersecurity. While their actions were illegal, their skills demonstrate a potential talent pool that could be harnessed for positive purposes if properly guided. The case serves as a cautionary tale about the dangers of exploiting vulnerabilities in public systems and the importance of ethical hacking. Overall, this breach not only impacts the affected users but also highlights broader issues in data security and the need for robust protective measures to prevent future attacks. As cyber
Verticals
tech
Originally published on The Register on 2/24/2026