top of page

PhilHealth systems back online

Metro Manila, October 5 ------ All eight systems of the state-run Philippine Health Insurance (PhilHealth) Corporation are now back online, but hackers are still still holding unknown amounts of data, the Department of Information and Communications Technology (DICT) said.

Hackers began exposing some personal information of PhilHealth employees on the dark web on Tuesday after the government failed to pay $300,000 (roughly ₱17 million) in ransom money. DICT Undersecretary Jeffrey Dy told CNN Philippines' The Final Word that the agency can't confirm yet how much information the hackers hold at this time. "Right now, the full data which is being held by the hackers has not yet been published. I don't know why. Maybe they are still hoping that we will pay them," Dy said. "They are slowly publishing information and it is true that most of the information we saw are from employees of PhilHealth."

He said hackers are exposing personal data that includes identification cards, payrolls, photos, and some ATM cards of PhilHealth employees. Although he admitted some workstations used by PhilHealth employees were compromised, the undersecretary clarified that PhilHealth's membership database remains intact and was not hit by the Medusa ransomware attack.

Israel Francis Pargas, PhilHealth senior vice president for health finance policy, also told CNN Philippines' The Source that member or patient data are safe, as hackers only got hold of employee information and some research papers.



bottom of page