PhilHealth has once again release an announcement that they are calling “Urgent Notice to the Public,” this is in connection to the Cyberattack that was made last Sept 22. The health agency reiterates that no member information have been taken and that membership database is intact and unharmed by the cyberattack last Sept 22.
They later reminded the public to be cautious in opening malicious contents online and on social media, which I suppose, is directed to PhilHealth’s employees. The agency is also working with the authorities to catch the perpetrators.
PhilHealth is currently working with multiple agencies that includes Department of Communication Technology (DICT), National Privacy Commission (NPC), Philippine National Police Cybercrime Division, Cybercrime Investigation and Coordinating Center (CICC) and the National Bureau of Investigation(NBI) to identify the perpetrators of the hacking.
Here’s the announcement by PhilHealth:
#MyPhilHealth reiterates that its membership database is intact and unharmed by the cyberattack last Sept 22.
The Corporation urges the public to be cautious in opening malicious contents online and on social media. It is working with the authorities to catch the perpetrators. pic.twitter.com/bvxgBsJ7Q9
— PhilHealth (@teamphilhealth) October 3, 2023
PhilHealth previously posted a Urgent Notice to the Public explaining what information have been compromised in the cyberattack that happened last Sept 22. Below are compromised PhilHealth member’s information;
- Name
- Address
- Date of Birth
- Sex
- Phone number
- PhilHealth ID number
The Health agency also recommended a number of steps that affected PhilHealth Members can take as a precaution.
The hackers demanded a ransom of $300,000 or approximately P17 million as payment to decrypt the files but according to a report by CNN Philippines, “The DICT confirms that some PhilHealth data affected in the Medusa ransomware attack have been published in the dark web after the deadline to pay ransom money to hackers lapsed.”
BREAKING: The DICT confirms that some PhilHealth data affected in the Medusa ransomware attack have been published in the dark web after the deadline to pay ransom money to hackers lapsed.
Story soon on https://t.co/aKKwOvZ60i pic.twitter.com/5622F3JJJ4
— CNN Philippines (@cnnphilippines) October 3, 2023