Agencies must address the country’s cybersecurity vulnerabilities especially since the 2025 midterm elections are fast approaching, according to a deputy minority leader. House Deputy Minority Leader and ACT Teachers Rep. France Castro has voiced serious concerns following the recent breach of the Bureau of Customs (BOC) computer systems by several…
Published May 6, 2021, 11:34 AM
Filipino cybersecurity professionals reiterate their call for companies and government agencies to have a functional Vulnerability Disclosure Program or VDP. Read on to know why.
Personal information of people who accomplished the “Coronavirus Self Declaration Form” for the COVID-19 vaccination program of the Municipality of Pulilan in Bulacan could be accessed publicly using a 20-year-old vulnerability. Information includes complete name, address, phone number, birthday, email, and pre-existing condition.
A hacker who calls himself Neuchi informed MB Technews about the incident because, according to him, “it seems that the site owners do not care, we informed them about the issue last week, and until now, the site is still vulnerable.” Neuchi is a member of the Philippine Hacking University (PHU) hacking group. Members of the PHU regularly hunt for vulnerable Philippine government sites and educational institutions to hone their skills in information security. Members of the group are advised by their leaders not to deface sites but instead contact the site administrators and inform them about the vulnerability to secure the sites. PHU members also told the Department of Information and Communications Technology and the National Privacy Commission about the incident, but “there’s no reply yet as of this posting from these agencies,” said Neuchi.