MANILA – The National Privacy Commission (NPC) is probing a possible personal data breach involving unauthorized transactions that swindled hundreds of BDO Unibank (BDO) depositors.
NPC Commissioner John Henry Naga said on Wednesday that the NPC’s Complaints and Investigation Division has started an investigation on December 11 and has notified both BDO and Unionbank to provide information, documents, evidence, or witnesses.
“(The) NPC has been in constant coordination with both banks in relation to the ‘sua sponte’ investigation of the security incident,” Naga said.
He added that the commission is also investigating BDO’s “10-year-old system” to see whether adequate “technical, organizational, and physical safeguards” were in place.
“Apart from requiring additional evidence and information, the NPC has ordered BDO and Unionbank to appear for a clarificatory conference, on Jan. 4, 2022, to verify and clarify the evidence submitted by the banks in relation to the investigation,” Naga said.
He noted that the NPC is coordinating its probe of the security incident with other government entities.
“The NPC assures the public that all steps necessary to safeguard the rights of data subjects shall be taken and that the commission shall exercise the full extent of its powers under the law against any party found to be in violation of the DPA (Data Privacy Act),” Naga said.
The Bangko Sentral ng Pilipinas (BSP) previously said that the suspected hackers behind the compromised BDO accounts have been identified, with two to four individuals suspected of being behind ‘Mark Nagoyo’ and at least six persons of interest.
BDO stated that it is in the process of reimbursing almost 700 clients who were impacted by these fraudulent transactions.
This website is very helpful. Thank you for your insight
beautiful relaxing piano