What is the information security breach in the Philippines? Read this study to have more knowledge about this title. As a result, it can help you to learn more.
What is the Information Security Breach In The Philippines?
The information security breach in the Philippines is an information security incident that occurred on 5 June 2016, where a hacker gained access to the files of the Philippine Commission on Elections.
On 9th May 2016, the website of the PHILIPPINE COMMISSION ON ELECTIONS was with a tag “Cyber fighters of I.S. (I.S stands for ISIS). Also, the defacement was a result of PHP exploits that the attacker upload a file “pw.php” which include some lines of codes that read:
A couple of minutes after this defacement, another file called “index.html” was and displayed the message: “pw.php” is vulnerable to SQL injection attack.
According to the Philippine Internet Defense Force (PDF), the defacement was by a hacker “Cyber_Warrior” who was able to gain access to the database of the website. Also, according to a report by the PIDF, this incident will not affect the ongoing 2016 Philippine elections, since the hacking was only on a public website.
However, the same day, the National Privacy Commission (NPC) ordered the Philippine Comelec to provide a written report about this incident. The report should be within 24 hours. This is because according to the NPC, the Philippine Comelec is also responsible for personal data protection.
On 6 June 2016, the Philippine National Police (PNP) announced that they will be investigating this incident on the request from the National Privacy Commission. The PNP will also be taking part in a conference call with NPC and PICC regarding this issue.
Effects on Business
According to Google, an information security breach is an incident where sensitive or personal information of a company is to unauthorized sources. And this can damage the reputation of the company. Also, information security entails protecting a company’s assets such as money, stocks, trade secrets, and intellectual property. And it also includes trading partners and customers.
According to CompTIA, an information security breach can happen in different ways such as:
- Hacking
- Phishing scams
- Malware
- Insider threats
- Data breaches from online sources
- Data breaches from physical sources
As a result, according to the American Institute of CPAs (AICPA), when a data breach happens, it can cause different problems for businesses such as:
Risks
- Business Reputation
- Loss of Customers
- Loss of Current or Future Partnerships
- Disgruntled Employees
- Litigation
When a cyber-attack happens, it can cause not only an information security breach but also this can lead to a business reputation. This is because according to the Global Technology and Security Survey by IBM, when a company suffers from a cyber-attack, it will affect its business reputation.
For instance, according to the Ponemon Institute, in 2014, a total of 10 million Americans were by hacking and data breach issues. And this them to lose trust in their companies. As a result, 48% of them said that they will reduce their purchase from the company that suffers from cyber-attack or data breaches.
And according to the Ponemon Institute, 80% of the customers that if a company gets hacked, they will lose their trust in that company. And if the company’s data breach happens more than once, the customer’s trust can be damaged even worse.
Also, according to the Ponemon Institute, about 25% of customers who bought a product or service from a hacked company leave that company.
Conclusion
The information security breach in the Philippines or also known as “Cyber Attack” is an incident on 5 June 2016, where a hacker gained access to the files of the Philippine Commission on Elections.