The Anti-Red Tape Authority (ARTA) is advocating for the online exchange of data on births,…
The NPC is investigating a probable data breach in the BDO hacking incident.
The National Privacy Commission (NPC) is investigating a probable personal data breach involving unlawful transactions that robbed hundreds of BDO Unibank (BDO) depositors of their money.
Commissioner John Henry Naga of the National Power Corporation said in a statement on Wednesday that the NPC’s Complaints and Investigation Division began an investigation on December 11 and has given notices to both BDO and Unionbank to submit information, documents, evidence, or witnesses.
“In relation to the’sua sponte’ investigation into the security situation, (the) NPC has been in continual cooperation with both banks,” Naga stated.
According to him, the commission is also investigating BDO’s “ten-year-old system” to see if adequate “technical, organizational, and physical safeguards” were in place.
“Aside from requesting additional evidence and information, the NPC has asked BDO and Unionbank to appear for a clarifying conference on January 4, 2022, to verify and clarify the material supplied by the banks in connection with the inquiry,” Naga added.
He added that the NPC is collaborating with other government agencies on the security incident inquiry.
“The NPC promises the public that all necessary efforts will be taken to protect data subjects’ rights and that the commission will employ all of its legal powers against any party found to be in violation of the DPA (Data Privacy Act),” Naga added.
The suspected hackers of the compromised BDO accounts have been identified, according to the Bangko Sentral ng Pilipinas (BSP), with two to four individuals suspected of being behind ‘Mark Nagoyo’ and at least six persons of interest.
BDO claimed it is reimbursing almost 700 clients who were harmed by the fraudulent transactions.