Website ng DepEd, inatake ng hackers

Website ng DepEd, inatake ng hackers

January 13, 2022 @ 10:19 AM 1 week ago


MANILA, Philippines – Kinumpirma ng opisyal ng Department of Education (DepEd) na ang website ng ahensiya ay naging biktima rin ng cyber attack sa nakalipas na linggo.

Ang nasabing hacking ng DepEd website ay nangyari noong Linggo, Enero 9, ang sinabi ni Education Undersecretary for Administration Alain Del Pascua sa Manila Bulletin sa isang Viber message.

“It was detected at 8:06 p.m. and resolved by 10:13 p.m.,” ayon kay Pascua.

Ang paliwanag ni Pascua na “image in the article was found in one of the subdirectories of DepEd but the homepage only displayed the text 72batman in white background.”

Dahil dito, sinabi ni Pascua na “additional security features have been applied” simula Disyembre sa tulong Microsoft.

“After each attack, this is also reviewed with them to determine other vulnerabilities and possible ways to address these,” dagdag na pahayag nito.

Buwan ng Disyembre, dumanas din ang website ng DepEd ng dalawang insidente ng cyber attacks: ang una ay noong Disyembre 2 at ang pangalawa naman ay noong Disyembre 16.

Sa isang Aide Memoire na may petsang Disyembre 16, sinabi ni Pascua na ang DepEd website ay “subjected to cyber attacks” sa pamamagitan ng “form of multiple attempts to disrupt, its availability, publish malicious content, reroute its traffic to malicious websites unsuitable for children, destroy website links, and disable the ability to upload and publish new content required for DepEd operations.”

Mula noon, nagpatupad na ang Information and Communications Technology Service (ICTS) ng ilang hakbang kabilang na ang “more frequent website monitoring; tracking and securing website accounts; and implementing additional application gateway and firewall settings to prevent security incidents and monitor unauthorized attempts.”

Nakipag-ugnayan na rin ang ICTS sa content publishers ng website at nagsagawa ng research at talakayan kasama ang mga security professionals para sa kung paano tataasan ang kapasidad na mapigilan at ma-detect ang security breaches.

“ICTS also included in its plans for 2022 the conduct of regular Vulnerability and Penetration Testing (VAPT) for the website and its other systems,” ayon kay Pascua.

Aniya pa, ipinagpapatuloy din ng ICTS ang “review and identify ways to implement strict countermeasures for the cybersecurity of DepEd website to protect the integrity and safety of our stakeholders.” Kris Jose