• IP addresses are NOT logged in this forum so there's no point asking. Please note that this forum is full of homophobes, racists, lunatics, schizophrenics & absolute nut jobs with a smattering of geniuses, Chinese chauvinists, Moderate Muslims and last but not least a couple of "know-it-alls" constantly sprouting their dubious wisdom. If you believe that content generated by unsavory characters might cause you offense PLEASE LEAVE NOW! Sammyboy Admin and Staff are not responsible for your hurt feelings should you choose to read any of the content here.

    The OTHER forum is HERE so please stop asking.

Hacked filipino voter records made public

H

HACKED

Alfrescian
Loyal

Hacked filipino voter records made public

Max Metzger, Reporter
April 22, 2016

Filipino voting records which were breached earlier this month have now been made public and searchable.

22364963132f23c87b55d43607e66326e9a4778b.jpg


Over half of the Filipino population have had their voting data stolen

The hacked voting records of millions of Filipino citizens have been made public and searchable.

Earlier this month, the entire database of the Philippines' Commission on Elections (COMELEC) was breached, leading to the potential theft of 55 million records of private Filipino citizens. As of 2016, the country had a population of just over 100 million, making the number of records breached over half the population of the country.

It seems the breach only added to COMELEC's embarrassment as, just the previous month, another hacker group defaced its website. The vandals exhorted the commission to improve its own security as well as the security of its automated voting system coming up to the 9 May elections.

COMELEC officials were quick to say that no sensitive information had been stolen, though they admitted that the COMELEC website did not have particularly high security.

Now it appears, those millions of records have been taken and published online in a searchable, Google-style format. The information includes sex, birthdate, civil status, addresses and precinct code. Cyber-security company Trend Micro, in its own analysis of the incident, mentions that the dump includes fingerprint data and a list of COMELEC officials with administrator access as well as 1.3 million overseas Filipino voters.

Responding to the news that the files had been made into a digestible format, James Jimenez, spokesperson for COMELEC

pic.twitter.com/fwyxrOxyS0

— James Jimenez (@jabjimenez) April 21, 2016

Jimenez mentioned that Philippine's National Bureau of Investigation Cybercrimes Division is now “investigating the matter”.

_____________________________________________________

Jimenez added, “We advise the public not to use the hacker website as it can be used by the hackers to steal your information and thus expose you even further to the dangers of identity theft.” Jimenez concluded by saying that one of the hackers responsible for the breach had already been apprehended.

But why publish? Why not just sell this info on? Chris Boyd, a malware intelligence analyst at Malwarebytes, speculated to SCMagazineUK.com that the group who published the records “may well be frustrated with what they see as a lack of response from both COMELEC and the higher echelons of government”.

Boyd added, “If Philippine citizens were in any doubt as to the scale of the breach, the hackers now have their full attention in terms of how big a problem this could be.”

The site that has uploaded this great wealth of data offer its own justification. “Why are we doing this”, the authors asked, continuing: “For lulz. Hackers just hack and download data from websites but we make it accessible for anyone. It's one thing to hear news about a huge data leak and another to see your data in a public website. Maybe, at least now, government will start thinking about security of citizens' personal data.”

Though COMELEC officials claimed that “no sensitive information” was taken during the breach, the miscreants behind the uploading of the data added: “The database contains a lot of sensitive information, including fingerprint data and passport information. So, we thought that it would be fun to make a search engine over that data.”

MalwareBytes took a look at some of the published information and confirmed that much of it is legitimate.

Whatever odd public service these hackers might feel they're doing, Boyd knows that they can't ensure the information is used in a noble way, even if that's the intention: “A mass data dump paves the way for everything, from marketing companies scraping the data to phishers being given instant access to one of the most comprehensive hauls on the planet, in terms of basic personal information.”

Boyd added, “Social engineering and confidence tricks are very popular in the Philippines, and this will only aid scammers in the long term.”


 
You must log in or register to reply here.

Similar threads

gsbslut
Huge data leak dubbed the 'Mother of all Breaches' sees 26 BILLION records leaked from sites including Twitter, Linkedin, and Dropbox - here's how to
Replies
2
Views
658
eatshitndie
eatshitndie
duluxe
Recalling 2018 SingHealth's data including LHL's medical record got hacked by state sponsored hackers, the perpetrator could be CCP?
Replies
5
Views
644
duluxe
duluxe
gsbslut
Don’t Panic Over “I Have to Share Bad News” Emails Demanding Bitcoin
Replies
0
Views
399
gsbslut
gsbslut
Hightech88
Complaints made in US, S’pore against local firm that promised quick returns on crypto investments
Replies
6
Views
389
k1976
k1976
gsbslut
Some ex-TikTok employees say the social media service worked closely with its China-based parent despite claims of independence
Replies
2
Views
169
millim6868
M
Top