1. Defendant B’s KRW 17,508,450 for the Plaintiff, Defendant C’s KRW 6,913,050 for each of them, and each of them from July 18, 2013 to June 16, 2015.

1. The following facts are based on the following facts: there is no dispute between the parties between the Plaintiff, the Korea Exchange Bank, and the Defendant Korea Exchange Bank, or between the parties; or there is no evidence of evidence Nos. 2, 3, 5 through 7, and evidence Nos. 1 through 9 (including additional numbers). It can be acknowledged by considering the overall purport of the pleadings. The above Defendant’s confession pursuant to Article 150 of the Civil Procedure Act between the Plaintiff and the Defendant C.

A. The Plaintiff opened a savings account (Account D; hereinafter “instant savings account”) in the Korea Exchange Bank (hereinafter “Defendant Bank”) and conducted financial transactions. After approving the basic terms and conditions of electronic financial transactions of the Defendant Bank, the Plaintiff used the Internet banking service with a security card issued by the Defendant Bank after obtaining approval of the basic terms and conditions of electronic financial transactions.

B. The Plaintiff’s denial used the Defendant bank’s Internet banking service using security cards, etc. in the instant deposit account, which was issued by the Plaintiff upon the Plaintiff’s consent.

The plaintiff's denial, around July 17, 2013, led the defendant bank to access as if he was the Internet banking website of the defendant bank, and had access to the Internet mining website established for the purpose of illegal acquisition of financial information.

The plaintiff's denial did not know about the change of the Internet homepage of the defendant bank, but did not recognize that it was an illegal strike site. The plaintiff's personal information such as the plaintiff's resident registration number, the Internet banking ID, password, and the security card serial number, as requested by the site to strengthen personal information security, entered and leaked the plaintiff's personal information such as 30 personal information such as the plaintiff's resident registration number, and the Internet banking ID number, and 30 personal information such as the security card serial number.

C. On July 17, 2013, immediately after the Plaintiff’s denial of personal information was acquired, the person who opened the mining website’s name and the mination website’s name and the mination’s name and the mination’s personal information.