Cyberattack against the Philippine electoral commission
For the data breach associated with the Commission on Elections in 2022, see 2022 Philippine general election § Smartmatic data breach.
Commission on Elections data breach
Date
March 27, 2016 (2016-03-27)
Location
Philippines
Type
Cyber-attack
Participants
Anonymous Philippines LulzSec Pilipinas
Outcome
Around 55 million registered voters at risk
Biggest private data leak in Philippine history
Arrests
Paul Biteng (arrested on April 20) Joenel de Asis (arrested on April 28)
On March 27, 2016, hackers under the banner "Anonymous Philippines" hacked into the website of the Philippine Commission on Elections (COMELEC) and defaced it. The hackers left a message calling for tighter security measures on the vote counting machines (VCM) to be used during the 2016 Philippine general election on May 9.[1] Within the day a separate group of hackers, LulzSec Pilipinas posted an online link to what it claims to be the entire database of COMELEC and updated the post to include three mirror link to the index of the database's downloadable files.[2] The leaked files by LulzSec Pilipinas amounts to 340 gigabytes.[3]
The COMELEC website returned to normal at 03:15 (PST) on 28 March 2016. COMELEC spokesperson, James Jimenez, stated on his Twitter account that, as they continue to scour the site, all databases would remain temporarily off.[4]
The incident was considered the biggest private data leak in the Philippine history and leaving millions of registered voters at risk.[5][6]
55 million registered voters are at risk due to the data breach according to security firm, Trend Micro potentially surpassing the Office of Personnel Management data breach which affected 20 million people.[7]
A searchable website, called wehaveyourdata, was set up containing sensitive data on Filipino registered voters was set up as early as April 21. The website was taken down with the assistance of the U.S. Department of Justice since the domain of the website was bought from a US-based web hosting company. The website itself was found to be hosted in Russia.[8]
^"Massive data breach exposes all Philippines voters". Telecom Asia. 12 April 2016. Retrieved 21 April 2016.
^Bueza, Michael; Manuel, Wayne (2 April 2016). "Experts fear identity theft, scams due to Comelec leak". Rappler. Retrieved 21 April 2016.
^Cite error: The named reference trendmicro was invoked but never defined (see the help page).
^"Comelec website back to normal after hacking". GMA News. 28 March 2016. Retrieved 29 March 2016.
^"Experts fear identity theft, scams due to Comelec leak". 1 April 2016. Retrieved 21 April 2016.
^"'COMELEAKS' Lawmakers: Voter database breach compromises May 9 elections; PNP joins probe". Interaksyon. 22 April 2016. Archived from the original on 23 April 2016. Retrieved 22 April 2016.
^Kennedy, John (11 April 2016). "Every one of the Philippines' 55m voters could be in danger of fraud". Silicon Republic. Retrieved 21 April 2016.
^"Searchable website with hacked data taken down – Comelec". CNN Philippines. 22 April 2016. Archived from the original on 23 April 2016. Retrieved 22 April 2016.
and 23 Related for: Commission on Elections data breach information
On March 27, 2016, hackers under the banner "Anonymous Philippines" hacked into the website of the Philippine CommissiononElections (COMELEC) and defaced...
This is a list of reports about databreaches, using data compiled from various sources, including press reports, government news releases, and mainstream...
The Electoral Commission of the United Kingdom suffered a databreach in 2021–2022. In March 2024 it was reported that the UK security services had identified...
collected data may be vulnerable to security breaches in light of the CommissiononElectionsdatabreach during the 2016 Philippine general election. Jamael...
operations, such as the Ryuk gang. As of September 2019, the Emotet operation ran on top of three separate botnets called Epoch 1, Epoch 2, and Epoch 3. In July...
account(s) and other account passwords. On 1 October 2015 Experian announced that they had discovered a databreach existing between 1 September 2013 and...
The Epik databreach occurred in September and October 2021, targeting the American domain registrar and web hosting company Epik. The breach exposed a...
officials on March 31. On April 1, COMELEC confirmed the Smartmatic breach, but clarified that the leaked data was not related to the elections, and the SD cards...
elections have been delayed for several months, as new delimitations will be published on 14 December 2023, as announced by the ElectionCommission of...
United States federal government, leading to a series of databreaches. The cyberattack and databreach were reported to be among the worst cyber-espionage...
Health Organization. Retrieved 29 April 2020. "Equifax databreach". Federal Trade Commission. 8 September 2017. Retrieved December 10, 2017. Shukla,...
"About Us". Personal Data Protection Commission. Retrieved 6 April 2021. "CDP and two other organisations fined for data privacy breach". The Straits Times...
mandates parliamentary elections once every five years. The election schedule was announced by ElectionCommission of India (ECI) on 10 March 2019, and with...
declared on 13 May 2023. The election saw a final voter turnout of 73.84%, the highest ever recorded in the history of Legislative Assembly elections in Karnataka...
during the 2018 Russian presidential election. Cyber Anakin subsequently used the content of the km.ru databreach to assist Latvian independent news website...
Parliament election is scheduled to be held on 6 to 9 June 2024. This will be the tenth parliamentary election since the first direct elections in 1979,...
from the original on September 14, 2014. Retrieved September 14, 2019. "Home Depot Settles Consumer Lawsuit over Big 2014 DataBreach". Reuters. March...
The current Commission is the Von der Leyen Commission, which took office in December 2019, following the European Parliament elections in May of the...
120 million users leaked, could be biggest databreach in India". fonearena.com. Archived from the original on 13 July 2017. Retrieved 13 July 2017. "Reliance...
furnished by DataSpii. On September 28, 2018, Facebook experienced a major breach in its security, exposing the data of 50 million users. The databreach started...
privacy" for breaching Coffee County election equipment to copy their data. Misty Hampton (a.k.a Emily Misty Hayes), then the Coffee County elections supervisor...
attacks, Windows XP exploits, viruses, and databreaches of sensitive data stored on hospital servers. On 28 December 2016 the US Food and Drug Administration...