After data breach incident, Philhealth says use member portal for data safety
MANILA, Philippines — The Philippine Health Insurance Corporation (PhilHealth) has asked its members to use the PhilHealth Member Portal to safely access their records.
In a statement Thursday, PhilHealth told its members to be cautious in clicking suspicious links that resemble the official site of the agency.
PhilHealth chief Emmanuel Ledesma Jr. also said that members should be cautious against people offering to manage their official documents in the agency as these are unauthorized and can lead to the compromise of personal information.
“Mag-ingat din po tayo sa mga nag-aalok online na sila na ang mag-aasikaso o kukuha ng inyong PhilHealth ID o MDR [Member Data Record] for a fee. Una, wala pong bayad ang ID at MDR. Ikalawa, wala tayong in-authorize na mag-ahente. Delikado po ito dahil makokompromiso ang inyong personal details,” Ledesma said.
(Be cautious when someone offers online to manage or procure your PhilHealth Identification or Member Data Record for a fee. First, the procurement of these documents is free. Second, we have not authorized anyone to do so. This is dangerous as your personal details may be compromised.)
“It is best to ignore suspicious calls, and to delete text or emails from unknown and suspicious senders to avoid being victimized by scammers,” he added
On September 22, around 730 GB of information in the PhilHealth database was hacked by ransom group Medusa.
The Department of Information and Communications Technology with the National Privacy Commission has also launched a site that will tell members whether their data was part of those hacked.