Overview
- Seoul police referred the high-school-aged suspects to prosecutors without detention on Information and Communications Network Act charges after arrest warrants were twice rejected due to their juvenile status.
- The intrusion on June 28–29, 2024 affected roughly 90% of registered users, exposing IDs, phone numbers, emails, addresses, birth dates, gender and weight, but not names or resident registration numbers.
- Authorities report no evidence the compromised data was leaked or sold, though investigators say the pair intended to profit from the theft.
- The case surfaced during a separate probe into an April 2024 DDoS incident, when forensic analysis of seized devices revealed Ttareungi user files and led police to both teens.
- Police attribute the breach to a structural authentication weakness and have opened a preliminary inquiry into Seoul Facilities Corporation for possible Personal Information Protection Act violations over alleged inaction.