The National Bureau of Investigation-Cybercrime Division presents five individuals arrested for hacking private and government websites, banks and Facebook accounts at a media briefing held at the NBI office on Friday (June 21, 2024). Among them is a data analyst from the Manila Bulletin, who linked the publication's tech editor and ICT head, Art Samaniego, to the hacking activities. NBI PHOTO
By Jaimes R. C. Sumbilon The National Bureau of Investigation (NBI) has detained three suspects accused of hacking numerous government and private institutions, banks and Facebook accounts.
During a press conference at their Quezon City office on Friday, NBI Cybercrime Division chief Jeremy Lontoc disclosed that one of the suspects known by the alias "Kangkong," identified as a data officer of the Manila Bulletin, claimed in an extrajudicial confession that he was instructed by publication's tech editor and ICT head, Art Samaniego, to exploit systems.
The NBI is currently investigating these allegations and plans to summon Samaniego to get his side.
In a statement, Samaniego denied any involvement or benefit from the hacking incidents, particularly the breach of the Armed Forces of the Philippines' website.
"Kangkong" and the other suspects, referred to by aliases “Mirasol,” “Sibat,” “Ricardo Redoble” and “Lulu,” were involved in multiple unauthorized access attempts and breaches of private and government websites since 2016. They are reportedly affiliated with two major hacking groups – Philippine Lulzec and Globalsec.
Lontoc shared that the NBI operatives tracked the hackers' activities extensively, monitoring their online movements to establish connections and patterns linked to their illicit actions.
"One of the hackers works as a cyber security researcher at a prominent company in BGC (Bonifacio Global City). I cannot disclose the name as it is under investigation. Another suspect is a graduating student who was previously associated with Pinoy Lulzsec," Lontoc said.
Of particular concern, according to Lontoc, was the discovery of extensive bank credentials, including usernames, passwords and OTPs or one-time passwords, on a device belonging to an individual known as "Illusion."
The affected banks include Philippine National Bank, Banco de Oro, Union Bank and Security Bank.
"We will verify with these banks if these data exist, as they could be exploited by scammers," Lontoc noted.
The suspects were initially contacted on June 14 through an informant, leading to their arrest on June 19 at a hotel in Manila. They underwent inquest proceedings on June 20 and face charges under the Cybercrime Prevention Act of 2012 and the Data Privacy Act of 2012.
NBI Director Jaime Santiago said these arrests mark only the beginning of intensified operations against cybercriminals, echoing the commitment he made upon assuming office.
Meanwhile, Manila Bulletin affirmed its adherence to national laws and reiterated its expectation for employees to uphold legal standards.
"We assure the public of Manila Bulletin's utmost fidelity to the laws of the land," the publication stated.