The National Intelligence Coordinating Agency (NICA) revealed that advanced hacking groups with ties to China are actively operating in or targeting the Philippines, including government and private sector entities.
Speaking during a Senate hearing on illegal Philippine Offshore Gaming Operators (POGOs), NICA Deputy Director General Ashley Acedillo confirmed the cyberespionage activities while responding to Senator Risa Hontiveros’ inquiries.
“With the information that we have, we can confirm that Chinese advanced persistent threat (APT) groups are operating or targeting the Philippines,” Acedillo stated, adding that more details would require an executive session.
What Are Advanced Persistent Threats?
Acedillo described APTs as “state-backed or state-affiliated advanced and highly sophisticated hacking groups” equipped with extensive resources and personnel, often believed to be state-trained.
“They provide a convenient cut-out for revisionist countries seeking asymmetric advantages,” Acedillo explained, adding that these groups operate in ways that allow plausible deniability for their sponsoring states.
Targeting Philippine Government Systems
In February, the Department of Information and Communications Technology (DICT) reported that hackers, suspected to be based in China, had breached email systems and internal websites of several Philippine government agencies using “gov.ph” domains hosted on a cloud service provider.
China dismissed the allegations at the time, calling them “groundless” and “irresponsible.”
Broader Implications
The revelations highlight growing concerns over cybersecurity threats and the use of cyberespionage by state-linked actors to disrupt or gather intelligence. The Philippines continues to grapple with such activities, raising the need for enhanced cybersecurity measures and international cooperation to protect sensitive information and infrastructure.