THE regional office of the Department of Trade and Industry (DTI) in Davao Region cautioned the public on Monday against becoming a victim of cyber-attack.
A New York-based company named EZYield wrote DTI's Bureau of Trade Regulation and Consumer Protection (BTRCP) to inform them "of a data event that compromised the security of personal information of two Philippine residents."
EZYield is a third party hotel reservation service provider.
The company learned last October 24, 2013 of the possibility that information that was transmitted through its hotel reservation system was the subject of a cyber-attack.
Upon learning the said incident, the company immediately started an investigation. The day following the discovery of the cyber-attack, the means by which the attacker gained unauthorized access was shutdown.
"Although the investigation are ongoing, on November 21, 2013 the forensic experts hired by EZYield confirmed that this cyber-attack resulted in the unauthorized access to the name and credit card information, including the CVV code, credit card number, and expiration date, of two Philippine residents," Christopher J. Dilleno, EZYield's representative, said in his communication to BTRCP.
Dilleno added that the company has already provided the affected Philippine residents with written notice of the said incident last December 6.
DTI-Davao Region officer-in-charge Ma. Belenda Q. Ambi said the public must be more vigilant in transacting online.
"Considering that even a big firm like EZYield has become a victim of cyber-attack, it only means that these cyber-attackers are experts in doing it, that even if you are implementing a tight security system, they still could get through it," she said.
Ambi said consumers who have experienced cyber-attack may contact any DTI office near them.