ACTIVITY

Earlier reports said that PhilHealth's system was attacked by the

Medusa ransomware on Sept. 22. Apart from the notice to explain, the
NPC also issued PhilHealth a notice to appear at a hearing scheduled
yesterday. It said the notices would be followed by a notice of onsite
investigation on Sept. 28.
Watch video: https://news.abs-cbn.com/video/news/09/27/23/dict-probes-ransomware-
attack-on-philhealth-system

1. What is your reaction to the ransomware attack of PhilHealth? Full of corruption

2. If you are the head of DICT, will you pay the ransom? Why? No, because as the
experts said there is nothing important to the data and information of their client.
So it is useless to spend $300,000 if that breach is not important at all.
3. How PhilHealths affects the data of the people? How about the security?
Can possibly access their private information and people will lessen the trust to
philHealth because of the incident. In the security they need to check all the
vulnerabilities of their network and also investigate their employees because the
number 1 risk in the security is the employee.
4. If you are the head of DICT, how will you solve this issue? Investigate all the
employees and check all the possible security breach and vulnerabilities and show to
the people what hacker gets from because as said in the video there is nothing
important from that files.
5. What are the solutions to avoid this ransomware? Support your answer.
Set rules to all employees to not bring flash drive device or anything device that can
get information and carry a virus. Also always check the system security
configuration to ensure that network has not any vulnerabilities.