The Philippine National Police (PNP) has suspended all the online services for gun-related transactions after it confirmed what it described as a possible data breach of the police’s Firearms and Explosives Office (FEO).
PNP spokesperson Col. Jean Fajardo said that its Anti-Cybercrime Group (ACG) has already conducted an investigation but this early, she said, the perpetrator responsible for the recent data breach of their Logistics Data Information System (LDMIS) is the same people who possibly breached the FEO system.
“One thing is for sure, the threat actor responsible for the possible breach on LDIMS is the same threat actor involved in the possible breach at the FEO. But if you are going to ask me as to the extent of the breach now, we cannot still say if there was indeed a breach because the system evaluation is ongoing,” said Fajardo.
The same threat actor, according to Fajardo, has been reported to have been uploading the data obtained but currently, she said the ACG is still conducting an evaluation on the extent of the alleged data breach.
“But nonetheless as a way of mitigation process, all the PNP systems were shut down, particularly the frontline services like the FEO as the conduct of the assessment and evaluation are ongoing,” said Fajardo.
Fajardo, however, explained that the services of the PNP will continue—but would be done manually.
“The only consideration now is that online services are temporarily unavailable but they could go to our regional offices to secure clearances and application for LTOPF (License to Own and Possess Firearms) and firearms registration,” said Fajardo.
“Here at Camp Crame, the FEO main office will remain open even during weekends to cater to our clients,” she added.
Meanwhile, Fajardo said they understand the concerns raised by some lawmakers, especially Sen. Imee Marcos since personal data are involved.
She added that even ordinary FEO clients would feel the same way because some personal information are believed to have been exposed to hackers.
“That is the main reason why we immediately shut down the system. So as a way of mitigation, there was a shutdown while assessment and validation are ongoing,” said Fajardo.