Lazada and Gcash, two major players in online shopping and mobile payments, have both denied reports of customer data breaches.
Lazada refuted claims that 18 million customer records were compromised, while Gcash assured that no know-your-customer (KYC) data had been breached.
The statement stemmed from a now-deleted Facebook post by cybersecurity page Infosecdad, alleging a major breach of Lazada's customer information, including names, emails, and addresses reportedly sold on a Chinese hacking forum.
In a separate incident, cybersecurity enthusiasts from Deep Web Konek alleged a breach in Gcash's KYC system, exposing mobile numbers, KYC IDs, signatures, selfies, and account details of numerous users.
“Lazada Philippines firmly denies recent allegations of a data breach on the platform’s system,” the online shopping firm said in a statement.
“Following a thorough investigation, Lazada has confirmed that no customer information has been compromised,” it added.
Meanwhile, GCash said that an investigation was promptly initiated upon learning about the alleged breach.
“Based on our initial findings, there are no indications of a data breach in our systems and this has no impact on customer funds and their accounts remain safe and secure,” GCash said.