Kyowon has disclosed a ransomware attack that exposed personal information linked to millions of accounts. The company said it detected suspicious activity in its systems in late December 2025 and launched an internal investigation with support from external cybersecurity specialists.
Kyowon operates education services and publishing businesses in South Korea, including learning materials and related customer platforms. The company said the incident involved unauthorised access consistent with ransomware activity, which can be used to disrupt systems and steal data for extortion.
According to Kyowon, the attackers accessed personal information stored in its databases. The exposed data may include names, contact details, and other account-related information connected to customers and business partners. The company said it is still assessing the full scope of the breach and determining how many individuals were affected.
Kyowon said it has not found evidence that financial information, such as payment card details, was compromised. It also said there is no indication that account passwords were accessed, based on its investigation so far. The company did not provide details on whether systems were encrypted or whether a ransom demand was received.
The company said it has notified relevant authorities and is contacting affected users in line with South Korean data protection requirements. It has also issued guidance advising users to remain cautious of suspicious messages and to monitor for signs of misuse of personal information.
Ransomware attacks often involve both operational disruption and data theft, with attackers threatening to publish stolen information if demands are not met. Kyowon has not confirmed whether the attackers attempted to extort payment or whether any stolen data has been released publicly.
Kyowon said it is strengthening its security controls and monitoring as part of its response. The company said it will provide further updates as the investigation continues and more information becomes available.