Carmaker Toyota and real estate firm Robinsons Land have confirmed recent data breaches, which are now being evaluated by the National Privacy Commission (NPC). On June 1, Robinsons Land reported its breach, while Toyota reported theirs on May 14. NPC Compliance and Monitoring Division chief Rainier Milanes emphasized that the NPC takes all allegations of data breaches very seriously and is actively monitoring the situation to ensure the security and privacy of all concerned data subjects.
Adding to the concern, the Philippine National Police (PNP) reported six data breaches in May, highlighting an increasing trend of cyber incidents. Companies processing personal data are required to notify affected data subjects individually and report to the Commission within 72 hours of discovering a breach. Milanes urged those who believe they are part of any data breaches to contact the data protection officers of the involved companies and report to the NPC.
The cybersecurity enthusiast group Kukublan Philippines alleged a series of data breaches from Toyota Makati, Robinsons Malls, and membership shopping chain S&R since May. These allegations were based on deep web listings offering stolen data for sale, including full names, addresses, bank documents, valid IDs, email addresses, and photographs of important documents of hundreds of thousands of individuals. While S&R has not reported a data breach, the gravity of the claims cannot be understated.
The NPC’s proactive approach underscores the importance of maintaining rigorous data protection measures. The Commission's efforts to safeguard data are critical as the country grapples with increasing cyber threats. A report from Kaspersky Security Network revealed that the Philippines ranked first in Southeast Asia and fourth globally among countries most targeted by web threats in 2023. Further data from the PNP Anti-Cybercrime Group showed a 21.84-percent increase in cybercrime incidents from January to March 2024 compared to the previous quarter.
In light of these challenges, a robust cybersecurity strategy is essential for both organizations and individuals. This is where Directpath Global Technologies (DGT) comes into play. As a Managed Security Service Provider (MSSP), DGT offers a comprehensive suite of cybersecurity services, including Mobile Threat Defense (MTD), Extended Detection and Response (XDR), Vulnerability Assessment and Penetration Testing (VAPT), System Organization Controls Type 2 (SOC2), Vulnerability Risk Management as a Service (VRMaaS), Web Application Firewall (WAF), and virtual Chief Information Security Officer (vCISO) services. DGT’s advanced Artificial Intelligence Division tailors services to organizations, enhancing not only cybersecurity but also various operational aspects.
By integrating these advanced cybersecurity measures, businesses can better protect themselves against evolving cyber threats. The recent breaches underscore the urgent need for a whole-of-society approach to cybersecurity, involving collaboration among government, the private sector, and civil society. Awareness campaigns, like the “Be Wais” campaign, which aims to educate consumers about online scams and frauds, are crucial in fostering a vigilant and informed community.
Equipping ourselves with the necessary knowledge and maintaining a vigilant mindset can prevent us from falling victim to scams, fraud, and other online illegal acts. It is crucial to protect citizens in cyberspace, raise awareness among the general population, promote financial literacy, and provide the necessary skills and tools to identify and avoid deceptive tactics. Source: The Manila Times
Comments