The Filipino government may have to navigate some challenges for the upcoming 2022 election as it was learned that servers that stored data for the Commission on Elections (Comelec) were accessed by an unauthorized party. It is believed that more than 60 gigabytes of data was downloaded. It was reported that an ongoing attack that started on January 8th was occurring on the Comelec servers, and that data was being stolen. Affected data includes usernames and PINS of vote-counting machines (VCM) along with network diagrams, IP addresses, list of all privileged users, domain admin credentials, list of all passwords and domain policies, access to the ballot handling dashboard, and QR code captures of the bureau of canvassers with login and password. While this information has not yet been verified by Comelec themselves, it is alarming, nonetheless. A full report is expected to be released by Comelec by the end of the week.
Written by: Nataliia Zdrok, Threat Intelligence Analyst at Binary Defense Russia’s invasion of Ukraine increased