Philippine Air Force Reservist Information System Data Breach
On July 29, 2024, the Reservist Data Management System (RDMIS) of the Philippine Air Force was involved in a data breach incident, affecting and exposing the personal details of over 16,000 Air Force reservist members. The attack was claimed by a local hactivist and grey hat hacker group identified as DeathNote Hackers International. The group emphasizes that the attack was “more of a ‘call-out’ post than an actual attack” and that no data was leaked.
Department of Energy GEMP Website Defacement
On July 27, 2024, the Department of Energy’s (DOE) Government Energy Management Program (GEMP) experienced a cybersecurity incident involving the defacement of their website by DeathNote Hackers International. While compromised data has not yet been publicly leaked at as of this writing, Deathnote has threatened to publish them on Breachforums if the agency fails to strengthen its cybersecurity defense after this incident.
Over 6.8M Subscribers Data of Vivamax Philippines Compromised in a Data Breach
On July 26, 2024, a data breach affected over 6.8 million subscribers of Vivamax Philippines, an outline streaming platform. The breach was disclosed by a hacker with the alias of “BitBanish,” who posted extensive subscriber data on a dark web forum. The leaked information, amounting to over 3 gigabytes (GB), includes personal details such as full names, phone numbers, email addresses, and payment methods. Additionally, the files reveal detailed subscription records and transaction histories. On July 27, Vivamax released an official statement explaining that they have “implemented appropriate protocols to secure our system and further protect data against unauthorized access” as they investigate the accurate scope of the breach.
Over 16,000 Patient Records Exposed in Data Breach Affecting Manila Health Department
On July 26, 2024, the Manila Health Department’s database suffered a major breach, exposing sensitive records of over 16,000 patients and more than 800 employees. The compromised information is currently being sold on a dark web forum for USD 150 in cryptocurrency, with the user and seller with an alias of “post,” willing to negotiate the price. This breach significantly endangers affected individuals by increasing the risk of identity theft and phishing schemes. As of writing, the Manila Health Department has yet to release a public statement about the incident.
