Two advocacy groups on data privacy urged the Department of Information and Communications Technology (DICT) and the National Privacy Commission (NPC) to warn the public on the potential impact of the PhilHealth data breach through a Medusa malware attack discovered on September 22.