LG Uplus (LG U+) held a security strategy meeting on July 29, where it announced its comprehensive “Security First” initiative aimed at combating cybercrimes such as voice phishing and smishing.
Hong Kwan-hee, Head of the Security Operations Center (CISO/CPO, EVP), emphasized LG U+'s commitment, stating, “We have recognized the importance of security swiftly and have systematically advanced our security measures. Going forward, through strategic investments, we will create a safer communication environment that our customers can truly feel.”
The company outlined a three-tiered approach focusing on security governance, prevention, and response. The Security Operations Center, established under the direct supervision of the CEO in July 2023, now serves as the corporate security hub with enhanced independence and accountability. To bolster security, LG U+ invested approximately 82.8 billion won in cybersecurity in 2024 alone—a 30% increase from the previous year—and expanded its dedicated security workforce by 86%, totaling 292.9 personnel.
Proactive Cybersecurity Measures
In terms of prevention, LG U+ is conducting long-term black-box penetration testing with external white-hat hackers, moving beyond internal audits to verify potential vulnerabilities in real-world conditions. This ongoing testing is set to continue into the first half of 2024, making it the longest such engagement among domestic telecom providers.
Advanced Security Response Strategy
For response, LG U+ is focusing on AI-powered security monitoring, with plans to develop a zero-trust architecture tailored to the company’s needs by 2027. Automated detection and response systems suitable for SaaS environments are being phased in to strengthen rapid threat mitigation.
Comprehensive Protection Against Voice Phishing and Smishing
The company also introduced an all-encompassing security solution designed specifically to defend customers from voice phishing and smishing scams. This system monitors customers' entire journey—from detection to emergency response.
During the monitoring stage, an AI-based damage prevention system detects and blocks malicious SMS messages, harmful URLs, and suspicious activities in real-time. For threat mitigation, LG U+ deploys an AI call agent called ‘Exist’ to alert users of suspicious calls, along with deep voice detection technology capable of identifying voice forgery.
In urgent response cases, if malicious apps are installed on customers' smartphones, instant alerts are sent via KakaoTalk, and customers are connected with over 1,800 security experts and law enforcement nationwide.
LG U+ is notably the only domestic telecom provider tracing malicious app servers linked to criminal organizations and demonstrating actual infection scenarios on-site—showing the severity of these threats. Devices infected by these servers are vulnerable to calls, messages, and camera access by criminal groups, often resulting in victims losing control of their devices.
By the second quarter of 2024, approximately 23% of voice phishing cases reported to the police were traced back to LG U+’s malicious server investigations.
During the press briefing, LG U+ also proposed establishing a joint police-civil cooperation body to eradicate such financial crimes. Currently, the company operates a collaborative system with the National Police Agency, and is expanding partnerships with the Ministry of Science and ICT, Korea Communications Commission, Personal Information Protection Commission, and National Forensic Service.
In particular, LG U+ works closely with Seoul Metropolitan Police, conducting joint customer protection activities such as on-site detection of malicious apps and immediate law enforcement responses. Future plans include leveraging AI to analyze criminal call patterns and establish rapid police response systems for at-risk customers.
An LG U+ spokesperson stated, “This is the time for social solidarity beyond mere technological responses. We will continue to take substantive actions to protect citizens from economic crimes and restore trust through genuine commitment to security.”
