The BSP said around 13 percent of the complaints involved fraudulent or unauthorized transactions of various financial products and services like deposit, credit card, electronic money, and remittance.
The privacy body said a certain hacker under the name “creepxploit” is selling the personal data of 3.3 million users of Cashalo containing their usernames, passwords, e-mail addresses, phone numbers, and device identifications.
Online lending firm Cashalo issued a statement on Saturday, Feb. 20, saying its “IT security team discovered a potential data security incident involving a Cashalo-only database archive”.
According to a discussion thread in the Facebook page of Privacy.PH, the personal data being peddled at the dark Web appears to be legitimate although Cashalo has not yet submitted any breach incident report to the NPC.
In separate advisories issued on Feb. 9, the SEC advised the public to exercise caution when dealing with Solmax Global Limited and Igniter 100, as well as BitAccelerate.
When users are sharing information without giving it any thought, it is quite likely that they are motivated by the prospect of presenting themselves as updated and well-informed netizens.
BSP governor Benjamin Diokno said the common crimes committed included fraudulent card usage and unauthorized or disputed transactions due to phishing e-mails and stolen one-time password (OTP).
As a result, cybersecurity now tops corporate priorities, with 93% of organizations in the Philippines saying that cybersecurity is extremely important or more important than before the pandemic.