BusinessWorld Online
GCash says systems secure as privacy commission probes alleged data leak
GCash has denied a data breach after reports of user data, including account numbers, linked bank accounts, and KYC records, being sold on the dark web.
The company, operated by G-Xchange Inc., stated that preliminary analysis shows the circulated data includes non-GCash users and incomplete, inconsistent, or invalid entries, suggesting it did not originate from GCash.
GCash assured customers that their funds and personal information remain secure, as their internal investigation found no evidence of a breach into critical systems.
The National Privacy Commission (NPC) has launched an investigation into the alleged breach and advised users to exercise heightened vigilance.
GCash is collaborating with the Bangko Sentral ng Pilipinas (BSP), NPC, and Cybercrime Investigation and Coordinating Center (CICC) to further validate information and protect its systems.
Topics in this story
Explore more stories about these topics.
🤖
This story was generated by AI to help you understand the key points. For more detailed coverage, please see the news articles from trusted media outlets below.
News Sources
See how different news organizations are covering this story. Below are the original articles from various Philippine news sources that contributed to this summary.
GCash has denied allegations of a data breach despite claims on a dark web forum about the sale of user data impacting an estimated 7 to 8 million users.
Read more →
The National Privacy Commission (NPC) is investigating an alleged data breach of GCash, the country's leading mobile wallet, after a dark web post claimed to be selling user data.
Read more →