Metro Manila (CNN Philippines, October 5) — All eight systems of the state-run Philippine Health Insurance (PhilHealth) Corporation are now back online, but hackers are still holding unknown amounts of data, the Department of Information and Communications Technology (DICT) said Wednesday.
Hackers began exposing some personal information of PhilHealth employees on the dark web on Tuesday after the government failed to pay $300,000 (roughly ₱17 million) in ransom money.
READ: Hackers begin publishing PhilHealth data on dark web – DICT
DICT Undersecretary Jeffrey Dy told CNN Philippines’ The Final Word that the agency can’t confirm yet how much information the hackers hold at this time.
\”Right now, the full data which is being held by the hackers has not yet been published. I don’t know why. Maybe they are still hoping that we will pay them,\” Dy said. \”They are slowly publishing information and it is true that most of the information we saw are from employees of PhilHealth.\”
He said hackers are exposing personal data that includes identification cards, payrolls, photos, and some ATM cards of PhilHealth employees.
Although he admitted some workstations used by PhilHealth employees were compromised, the undersecretary clarified that PhilHealth’s membership database remains intact and was not hit by the Medusa ransomware attack.
