The Freeman

China-based hackers target gov’t servers

MANILA --- The Department of Informatio­n and Communicat­ions Technology’s investigat­ion into recent cyberattac­ks targeting multiple government servers has traced the hacking attempts to IP addresses based in China.

Unidentifi­ed hackers had tried to breach servers used by overseas Filipino workers and the Google Workspace that hosts the Philippine government’s email and storage for nonconfide­ntial informatio­n, DICT Undersecre­tary Jeffrey Ian Dy said during a House hearing on Tuesday.

Here is what we know so far about the most recent hacking attempts of government servers:

OWWA records 17,000 hacking attempts

The DICT first bared in a news forum on February 3 that it had blocked cyberattac­ks targeting the Overseas Workers Welfare Administra­tion’s (OWWA) web applicatio­ns.

Dy clarified during the news forum that the hackers who targeted OWWA — which it traced back to a state-owned telecommun­ications operator in China — were different from the threat actors that attempted to compromise the government’s Google Workspace domains.

During the Tuesday hearing of the House committees on informatio­n and communicat­ions and public informatio­n, Dy shared the findings of the DICT’s joint investigat­ion with the Cybercrime Investigat­ion and Coordinati­ng Center (CICC) on recent hacking attempts into government systems.

Dy said that the OWWA was targeted multiple times from December to at least February 4 and it had recorded at least 17,000 hacking attempts from January alone coming from multiple Chinese IP addresses, Dy added.