The Philippine National Police is expediting its investigation into the alleged PNP recruitment application portal leak that was reported by a cyber security researcher, PNP Public Information Office (PIO) chief Col. Redrico Maranan said Friday.
“As an immediate response to the said report by the National Privacy Commission, the Anti-Cyber Crime Group (ACG) of the PNP is currently exerting efforts in fast-tracking its internal investigation to determine if there are possible violations of the provisions of the Data Privacy Act (Republic Act 10173),” Maranan said in a statement. Charles Dantes
He said the PNP Directorate for Information and Communications Technology is also assessing the systems to determine possible violations or lapses in protocols and procedures.
Maranan issued the statement after a report by cyber security researcher Jeremiah Fowler that a database containing 1.2 million records of police officers and applicants has been “exposed.”
In a report posted on vpnMentor, Fowler said the database appears to have been breached and urged Philippine authorities to look into the matter and find out who might be behind it.
Maranan, however, said the PNP is standing by the statement of Department of Information and Communications Technology (DICT) Secretary John E. Uy that “there was no hacking incident, intrusion, or breach on the PNP database.”
He said the PNP is actively coordinating with the DICT for a parallel investigation.
“We assure the public that we are closely collaborating with DICT to ensure the security, safety, and privacy of information in the custody of the PNP to strictly comply with the provisions of the Data Privacy Act,” Maranan said.