The Cybercrime Investigation and Coordinating Center (CICC) is investigating a potential organized cyberattack targeting GCash accounts that caused the unauthorized fund transfers over the weekend.
CICC Executive Director Alexander K. Ramos said that the agency started focusing on organized breaches instead of a system glitch when the agency started to look into the case of popular actress Pokwang or Marietta Tan Subong in real life.
In her Instagram account, the 52-year old comedian claimed that she lost P85,000 in her GCash account and alleged that unauthorized fund transfers were sent to some accounts.
Ramos, however, challenged the celebrity to cooperate with CICC and explain to the public what really transpired.
“She has to confirm and identify whose numbers are those that received the cash. Does she know them or not? It confuses the general public as to the truth of the fact that happened to her GCash account,” Ramos said.
Meanwhile, the Bangko Sentral ng Pilipinas (BSP) has instructed G-Xchange, Inc. (GXI), the operator of GCash e-wallet, to immediately resolve the reported unauthorized deductions on account balances of affected GCash users and swiftly complete the process of refunds that GXI has initiated.
In a statement, the BSP has likewise required GXI to submit regular updates on its actions on the matter. BSP is closely coordinating with GXI to ensure a prompt resolution of this issue.
Based on the initial report of GXI, the BSP said the incident was attributed to a system error. It said that GXI assured BSP that all accounts of GCash users remain secure and that they are now in the process of refunding the deductions.
BSP said it will investigate the incident further to identify possible vulnerabilities and review compliance with regulations and policies.
The Bangko Sentral also encourages affected users to coordinate with GXI for the immediate resolution of their complaint.
The Inter-Agency Response Center (IARC) hotline has so far received 21 complaints on the unauthorized fund transfers over the weekend.
“That’s why we are encouraging victims of this organized breach, including Pokwang, to come forward to explain what really happened to their accounts.”
The IARC hotline 1326 is toll-free and operates round-the-clock from Mondays to Sundays including holidays.
