Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Philippines Probes Hacking of Poll Agency Ahead of Election

Manila – Philippine authorities are investigating a computer security breach at the state election agency, officials said Tuesday, less than a month before the nation goes to the polls.

Manila – Philippine authorities are investigating a computer security breach at the state election agency, officials said Tuesday, less than a month before the nation goes to the polls.

The March 27 incident led to certain Commission on Election files being copied by unknown hackers from its website. But the commission said the privacy of the country’s 55 million registered voters was not compromised.

Its spokesman James Jimenez said investigators were still checking the potential impact on the May 9 election, which he said will go ahead as scheduled.

At a news conference, he rejected a computer security firm’s report that sensitive voter data including fingerprints were leaked.

Related: 55 Million Exposed After Hack of Philippine Election Site

“The copied data did not include actual biometric records,” Jimenez said.

The May polls will elect the successor to President Benigno Aquino. Thousands of other posts are also at stake including vice president, legislators and local executive posts.

The security firm TrendMicro alleged on its website that the election commission’s entire database was posted online by a hacker group after another group defaced its website.

“While initial reports have downplayed the impact of the leak, our investigations showed a huge number of sensitive personally identifiable information — including passport information and fingerprint data — were included in the data dump,” it added.

Jimenez rejected TrendMicro’s report, calling it “irresponsible at best”.

He said the hacking was being investigated by government cybercrime experts, while the commission strengthened its defenses against hackers.

It has also reprogrammed software used by voters to find the location of their precincts, he said.

In the Easter Sunday attack, the home page of the commission’s website was replaced with information about a group named “Anonymous PH”, Jimenez said.

A Facebook account by an entity calling itself Lulzsec Philippines later boasted that a copy of the whole database had been made available, he added.

Ronald Agulto, head of the National Bureau of Investigation’s cybercrime unit, said the commission has sought help in finding, as well as filing criminal charges against, the hacker or hackers.

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Cybercrime

A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Cybercrime

Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack

Cybercrime

CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.

Cybercrime

Chinese threat actor DragonSpark has been using the SparkRAT open source backdoor in attacks targeting East Asian organizations.

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.