SK Telecom acknowledges the findings of the joint public-private investigation and expresses its deep regret regarding the cybersecurity incident. We sincerely apologize to our customers and to society for the inconvenience and concern this incident has caused, and we are committed to taking all necessary steps to ensure this does not happen again.

 

To reiterate its commitment and rebuild customer trust, SK Telecom is announcing the Accountability and Commitment Program, consisting of the Customer Assurance Package, Information Protection Innovation Plan, Customer Appreciation Package and Subscription Cancellation Fee Waiver.

 

The Customer Assurance Package, introduced following the cybersecurity incident, will be enhanced to provide robust protection and prevent harm to SK Telecom customers. SK Telecom remains steadfast in its commitment to taking full responsibility for safeguarding our customers in the aftermath of the incident, continuing this dedication until all concerns are fully addressed.

 

To address cybersecurity concerns and strengthen customer confidence, SK Telecom is launching the Information Protection Innovation Plan, investing KRW 700 billion over the next five years to build a world-class information protection system. This initiative will be guided by the U.S. National Institute of Standards and Technology’s (NIST) Cybersecurity Framework (CSF), and will align with the highest cybersecurity standards. SK Telecom aims to lead Korea in cybersecurity by 2028 and establish a globally recognized security system within five years.

 

As a gesture of gratitude for the trust and patience shown by our customers during this challenging time, SK Telecom is also launching the Customer Appreciation Package to acknowledge and thank our customers for their loyalty.

 

Moving forward, SK Telecom remains firmly committed to delivering meaningful value that resonates with all customers and will continue to strive to provide dependable, quality services.

 

SK Telecom Customer Assurance Package

SK Telecom introduced the Customer Assurance Package right after the cybersecurity incident to prevent secondary damage prior to the Information Protection Innovation Plan.

 

1. SIM Protection Service

●  all customers via MMS and can also be found on the dedicated information page.

●  It links the customer’s SIM card and device, preventing the use of stolen SIM information on another device, even if the SIM is cloned by an attacker.

●  The service was automatically provided to all customers, with special consideration for customers less familiar with digital technology. It was also enhanced to block unauthorized access to SIM card information for customers overseas.

 

2. FDS 2.0

●  Fraud Detection System (FDS) 2.0 was deployed to the system on May 18.

●  FDS 2.0 is an advanced multi-authentication system that cross-references unique SIM card and device characteristics for a comprehensive review.

●  The system has been enhanced to not only block network access from unauthorized SIM cards but also to prevent access from illegally cloned devices.

 

3. SIM Card Replacement

●  SIM replacement was offered to all customers.

●  Starting April 28, 2025, SK Telecom began offering a one-time free SIM replacement — whether a physical SIM card, eSIM or SIM reset — according to each customer’s preference.

●  On May 12, SK Telecom developed SIM Reset, a solution that enables software-based changes to the authentication information of a SIM card without requiring a physical SIM replacement (a one-time free SIM replacement remains available after the SIM Reset).

●  As of June 19, SK Telecom successfully completed all SIM replacements for 9 million customers who had made reservations.

 

For even greater customer protection, SK Telecom is announcing plans for the Enhanced Customer Assurance Package.

4. Mobile Device Security Solution

●  SK Telecom will offer all customers with ZIMPERIUM, a top-tier global mobile device security solution used by military organizations, governments and telecommunication companies, free of charge for one year to protect against the latest cybersecurity threats.

●  ZIMPERIUM is a global leading mobile security solution

●  This solution is available to all customers subscribed to SK Telecom.

●  The solution is scheduled to be rolled out in the second half of 2025 after preparation.

 

5. Cybersecurity Compensation Guarantee System

●  SK Telecom will introduce a system where an external organization supports the compensation process for customer damage caused by SIM cloning, in accordance with applicable laws, terms and the findings of the investigation.

 

6. Coverage Limit for Cybersecurity Corporate Insurance

●  SK Telecom will raise the coverage limit from KRW 1 billion to KRW 100 billion, establishing a system capable of providing compensation for potential cybersecurity incidents in the future, subject to the terms and conditions of the insurance policy.

 

SK Telecom Information Protection Innovation Plan

SK Telecom is making the largest investment in the telecommunications industry to elevate its information protection system to global top-tier standards.

1. Investment

●  SK Telecom plans to invest KRW 700 billion over five years to expand security teams, improve systems and elevate information protection to top-tier standards.

●  The company plans to double its information protection team by hiring industry experts and developing in-house talent.

●  To support the growth of the Korean information protection industry, SK Telecom will establish a KRW 10 billion fund to strengthen Korea’s cybersecurity industry. The fund is planned to be used for fostering talent in collaboration with prestigious universities specializing in information security, operating industry-academic partnership programs, and supporting the discovery and development of promising information security startups.

 

2. Governance

●  SK Telecom will reorganize the Chief Information Security Officer role to report directly to the CEO, strengthening its responsibilities within the company. Also, the board of directors will include cybersecurity expert to ensure stronger security decision-making and execution at the executive level.

●  To proactively address security vulnerabilities from the attackers’ perspective, SK Telecom will establish a Red Team, tasked with continuously checking and improving security vulnerabilities, building a practical and proactive security system.

 

3. Zero Trust-based Information Protection System

●  Zero Trust is a comprehensive security model that continuously verifies all access and grants the least amount of access. It is applied to various technologies and operational processes, including strict authentication and authorization management, network segmentation, AI-based integrated security monitoring and data encryption.

 

4. ISMS-P Certification and Internal/External Cybersecurity Validation System  

●  To strengthen personal information protection, SK Telecom will expand the scope of its Personal Information & Information Security Management System (ISMS-P) certification to include telecommunications infrastructure and enterprise-wide systems, beyond key business systems and major telecommunications and IT services.

●  In line with public institution obligations, SK Telecom will proactively adopt a personal information impact assessment system to ensure the security of the personal information handling process.

●  Internal development and operation process will be designed with a focus on personal information protection. SK Telecom is also advancing R&D efforts through industry-academia collaboration to develop next-generation information security technologies. In addition, SK Telecom plans to gather customer feedback through a public participation project that solicits ideas for personal information protection.

●  SK Telecom will work closely with the Special Committee for Information Protection Innovation established in May 2024 to actively validate the company-wide security level and conduct simulated hacking exercises with internationally recognized white-hat hackers to address vulnerabilities.
(Reference: SK Group established an independent advisory body, The Special Committee for Information Protection Innovation, consisting of industry and academic experts in personal information protection and cybersecurity, in May 2024.

 

Customer Appreciation Package

The Customer Appreciation Package will be available to all SK Telecom customers from July 15 to December 31, 2025. SK Telecom plans to offer a range of programs totaling KRW 500 billion in value to all 24 million customers who use SK Telecom and MVNO networks.

 

1. Monthly bill discount and additional data for August

●  All eligible customers will automatically receive a 50% discount on the monthly bill for August 2025.

●  All eligible customers will automatically receive an additional 50 GB of data every month, from August 1 to December 31, 2025.

●  SK Telecom plans to discuss with MVNO operators that use SK Telecom network service to provide 50% discount on the monthly bill (including subscription fee and text/voice call/data fee) for August for MNVO users. The actual application of these benefits to MVNO users may vary depending on the outcome of such discussions and relevant agreements.

 

2. Enhanced T Membership Benefits

●  From August through the end of 2025, SK Telecom will enhance the discount benefit to 50% and above at its T Membership program, enabling customers to enjoy discounts at various T Membership partner companies.

●  Customers who newly subscribe to SK Telecom can receive the same benefit as existing customers.

 

3. Benefits for Returning Customers

●  Customers who canceled their subscription after the cybersecurity incident may have their original benefits, including years of service and membership status, restored upon rejoining SK Telecom, subject to applicable terms and conditions.

●  Customers who rejoin within six months of cancellation will automatically have their benefits restored. Those who do not rejoin within this period may apply for the restoration program on the T World website, with benefits restored if they rejoin within three years of application.

 

Subscription Cancellation Fee Waiver

●  Customers who were subscribed to SK Telecom before midnight on April 18, and either canceled their subscription after the cybersecurity incident or intended to cancel it by July 14, will have their telecommunication service cancellation fees waived. The scope and method of reimbursement will be determined in accordance with SK Telecom’s internal policies and applicable laws.  For further details, please refer to the T World website.

 

Details about the Customer Appreciation Package will be provided to all customers via MMS and can also be found on the dedicated information page.