The Cybercrime Investigation and Coordinating Center (CICC), an attached agency of the Department of Information and Communications Technology (DICT), met with GCash executives on Friday, June 28, to address the reported alleged data breach.

In a statement, CICC Executive Director Alexander K. Ramos said that during the meeting at the National Cybercrime Hub in Bonifacio Global City, he sought a transparent assessment of the reported data breach allegedly involving GCash.

“We take the alleged data breach seriously and have asked GCash to provide information on the veracity of the contents being published or reported,” Ramos said.

“GCash has reported that they are working round the clock to verify the contents and have committed to allowing a deeper probe into the alleged leak,” he added.

This follows a report from the cybersecurity enthusiast group "Deep Web Konek" on June 27 regarding an alleged data breach linked to the threat actor "KryptonZombie," which targeted the GCash Know-Your-Customer (KYC) system.

The anti-cybercrime advocacy group noted that the actors exposed sensitive information from thousands of users, including mobile numbers, KYC IDs, GSave account details, signatures, and selfie IDs.

Meanwhile, the digital wallet company assured customers that their funds remain safe and secure amid the alleged data incident.

In a statement on Thursday, GCash said, "Upon learning about this matter, we promptly launched an investigation and are now closely working with our regulators and authorities."

"Based on our initial findings, there are no indications of a data breach in our systems, and this has no impact on customer funds; their accounts remain safe and secure," it added.

"We stand united with our regulators in addressing the increasing incidents of data leaks that have made headlines in recent weeks," it concluded.

GCash also reminded customers to protect their personal information and to regularly update their passwords and Mobile Personal Identification Numbers (MPIN).