Yes24 Resumes Partial Service After Five-Day Ransomware Attack, Apologizes, Offers 5,000 Won Voucher and Crema Access

Yes24, South Korea's largest online bookstore and a key player in the ticketing industry, experienced a ransomware attack on June 9, 2025, which caused a complete service outage lasting five days. The attack disrupted access to its website and mobile app, including its ticketing services for concerts and musicals, leading to cancellations and audience withdrawals at some venues. Despite initial claims denying the hacking incident and the possibility of personal data breaches, the Korea Internet & Security Agency confirmed that the company had concealed the hacking from customers, sparking controversy. After five days, Yes24 resumed partial services such as book sales and ticketing, although some services like e-books remained unavailable. On June 16, the company’s co-CEOs, Kim Seok-hwan and Choi Sera, issued a formal apology for the incident. Following this, on June 17 and 18, Yes24 announced compensation measures for all members, including a 5,000 won gift voucher and 30-day access to the Crema club. The company also revealed that it had been operating on an outdated system, which is currently being replaced to prevent future incidents.