en.Wedoany.com Reported - Dunamu has significantly increased its information security investment, reaching 24.3 billion won in 2025, an increase of 9.6 billion won from 14.7 billion won the previous year, representing a 64.7% rise. The proportion of information security investment in overall IT spending has reached double digits for the first time, rising from 9.6% in 2024 to 11.6%.

According to data from the Korea Internet & Security Agency (KISA) Information Security Disclosure Integrated Portal, Dunamu's IT department investment increased from 154.3 billion won to 210.3 billion won over the same period, a year-on-year increase of 36.2%. The expansion of information security investment outpaced the growth of overall IT investment. Investment trends over the past five years show that Dunamu's information security investment has grown steadily from 5.7 billion won in 2021 to 24.3 billion won in 2025, with a cumulative investment of 62.7 billion won.

Major investment projects have also changed. Last year's disclosed major projects expanded from "upgrading the information security anomaly monitoring system" to joining the Financial Security Institute and receiving its security service support, indicating that the scope of security investment has expanded from internal monitoring system upgrades to the utilization of external financial security infrastructure.

Virtual asset exchanges are responsible for safeguarding customer assets and operating real-time trading services. Security incidents could lead to user losses and damage to platform trust. Dunamu's increase in the proportion of information security investment is seen as a measure to strengthen the trust foundation for its exchange business.

In terms of human resource investment, as of the end of 2025, Dunamu's information security department had 43.9 full-time personnel, an increase of 10.3 from 33.6 the previous year, a growth of 30.6%. The proportion of full-time information security personnel in the IT department rose from 9% to 11.1%. Among them, internal information security personnel increased from 30.3 to 34.4, while outsourced personnel increased from 3.3 to 9.5. Compared to 9.9 in 2021, the number of full-time information security personnel has more than quadrupled over four years.

Dunamu maintains multiple security certification systems, including the Information Security and Personal Information Protection Management System (ISMS-P), Information Security Management System (ISMS), ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, ISO/IEC 27701, and ISO 22301. Among these, the ISMS certification validity has been extended to April 2028.

In terms of user protection, Dunamu conducted 12 activities last year to enhance user information security awareness, covering alerts about impersonation of current and former Upbit employees, security notices regarding phishing websites, preventive measures against voice phishing and hacking attacks, and warnings about transaction support scams. For internal inspections, the company conducted IT security internal audits on major services such as Upbit and Securities Plus, established regulations and guidelines for personal and credit information protection, and operates the Upbit vulnerability reporting and reward program—the Bug Bounty.

Dunamu's Chief Information Security Officer (CISO) Jeong Jae-yong stated that digital finance can only survive and expand its value based on customer trust, and the company will repay customers through sincere efforts to protect customer assets and continuous investment.