The Manila Bulletin (MB) Technews team recently discovered a vulnerability in the Commission on Elections (Comelec) servers.

The hackers’ group has allegedly managed to breach the poll body’s system last Saturday (January 8), downloading over 60 gigabytes (GB) of data that may have been sensitive voter information such as usernames and PINS of vote-counting machines (VCMs) and could possibly affect the May 2022 elections. 

Comelec Spokesperson James Jimenez has been notified immediately by the MB Technews team of their findings, which Jimenez will bring forward “the information to the attention of the Comelec Steering Committee.”

In a follow-up call Monday, Jimenez said he has yet to receive a response from the Comelec Steering Committee.

Also included in the downloaded files were network diagrams, IP addresses, a list of all privileged users, domain admin credentials, a list of all passwords and domain policies, access to the ballot handling dashboard, and QR code captures of the bureau of canvassers with login and password.

“Sensitive data downloaded also included list of overseas absentee voters, location of all voting precincts with details of board of canvassers, all configuration list of the database, and list of all user accounts of Comelec personnel,” said MBTechnews.

On January 8, a source reached out to the MB Technews team to provide information about the ongoing hack of Comelec servers. The team promptly responded and verified the information. – WhatALife.ph

Source: (1)

---

You Might Also Want To Read: Pulse Asia Survey release its latest findings for the May 2022 Elections conducted from December 1-6, 2021