MANILA, Philippines — The Nationwide Privateness Fee (NPC) on Wednesday stated the info breach involving Jollibee could also be part of a collection of extortion actions taking place globally.
In accordance with NPC-Compliance and Monitoring Division (CMD) chief Rainier Millanes, round 165 corporations in numerous international locations had been recorded to have been affected by such assaults in June 2024.
READ: NPC confirms knowledge of 11M Jollibee clients leaked
“Maaari pong related po ito sa string of extortion actions – ito po iyong paghingi ng pera kapalit ng datos or ransomware extortion actions na nangyayari ngayon sa buong mundo. Hindi lang po Jollibee iyong tinamaan, pati po karamihan po ng mga kumpanya sa buong mundo ay tinamaan din po nitong ganitong klaseng pag-atake,” stated Millanes in a Bagong Pilipinas Ngayon briefing.
(This can be related to the string of extortion actions – asking for cash in trade for knowledge or ransomware extortion actions – that’s taking place all over the world in the present day. Not solely Jollibee was hit, most corporations all over the world had been additionally hit by this kind of assault.)
Whereas the investigation on the cyberattack is ongoing, Millanes stated the info breach affected 11 million clients, together with clients of Jollibee, Chowking, Greenwich, Crimson Ribbon, Mang Inasal, Burger King, Yoshinoya and Panda Categorical.
When requested which particular info was compromised, Millanes defined that it was their knowledge hyperlink.
Knowledge hyperlink, stated the NPC official, refers to a group of knowledge which may embrace private knowledge or different info.
“Iyong extent po, inaalam pa po ng Jollibee sa ngayon at humingi po sila sa atin, allowed naman po iyan sa guidelines of process ng NPC, humingi po sila sa atin ng 20 days beginning final Saturday – further 20 days for them to have the ability to determine, personally determine and notify affected knowledge topics and likewise for them to conduct iyong kanilang inside investigation on the matter,” stated Millanes.
(Relating to the extent, Jollibee continues to be investigating this they usually requested us for 20 days beginning final Saturday, which is allowed within the guidelines of process of the NPC– further 20 days for them to have the ability to determine, personally determine and notify affected knowledge topics and likewise for them to conduct their inside investigation on the matter.)
Millanes stated the compromised knowledge was leaked by a sure “Spider” at nighttime net, but additionally stated that the NPC isn’t but discounting the chance that the info breach may have been an inside job, pending an investigation.