Information and Communications Technology Secretary Ivan John Uy. Senate PRIB file photo
The Department of Information and Communications Technology (DICT) said on Thursday that Beijing had offered to help Manila track down the who tried to attack several Philippine government websites recently.
At a press briefing, DICT Secretary Ivan Uy said his department was open to 鈥渨orking with everybody,鈥 to round up cybercriminals who may include other foreign nationals.
鈥淭hey reached out to ask if we can do some cooperation, which actually [works] both ways鈥攃ooperation has to come as a mutual activity,鈥 Uy said.
鈥淪o, they are willing to help. They have mentioned that if we can share with them information on what transpired so they can help track down and find the perpetrators,鈥 Uy added.
On Saturday, one of his undersecretaries, Jeffrey Ian Dy, disclosed that the three weeks earlier that it had traced to somewhere in China.
Dy said three 鈥渁dvanced threat groups鈥 targeted and lurked in government mailboxes and Google Workspaces of the DICT, the Philippine Coast Guard鈥檚 National Coast Watch and even President Marcos鈥 personal website, bongbongmarcos.com.
鈥楥ommand and control鈥
He said the hackers鈥 鈥渃ommand and control鈥 was operating 鈥渇rom within China,鈥 through China Unicom, a Chinese state-owned telecommunications company.
On Monday, the Chinese Embassy in Manila denied its government had a role in the hacking attempts, calling allegations and media reports about Beijing鈥檚 alleged involvement as 鈥渕alicious鈥 and 鈥渋rresponsible.鈥
Uy said that it was 鈥渢oo early鈥 to conclude that the hacking attempts were linked to the ongoing maritime dispute with China in the West Philippine Sea.
鈥淓verything is in the realm of the possible, but we always maintain open arms. Anyone who wants to cooperate, you know, we don鈥檛 reject those offers and then see where we go from there,鈥 he said.
At the news forum in Malaca帽ang, Uy explained that China had sought cooperation with the DICT supposedly to prosecute hackers who had been preying on its own citizens and weakening its cybersecurity.
Pogo raids
He cited the recent raids on a Philippine offshore gaming operators (Pogo) hub that rounded up more than 600 people, 200 of whom were Chinese.
鈥淲hen we looked into the computers of those arrested, we discovered that they were victimizing citizens in China, Hong Kong, Taiwan and Singapore鈥攁ll Mandarin-speaking countries鈥攆or their scams,鈥 Uy said.
According to Uy, China wanted information on those behind the hacking attempts so it could work on their deportation and have them prosecuted in their home countries.
Uy said the hacking attempts could be the handiwork of mercenaries who have been hiding in different countries using their talents to conceal their identities.
鈥淪o, coordination among different countries to work together and go after these groups is important. We are open to working with everybody. These actors, they are everywhere,鈥 the DICT chief said.
鈥極bsolete鈥 structure
Strengthening the DICT鈥檚 capacity to block cyberattacks would be done through a five-year National Cybersecurity Plan approved by the President, but an 鈥渙bsolete鈥 civil service structure was hampering the recruitment and retention of much-needed experts, according to Uy.
The 2024-2029 plan would provide direction on policies and guidelines for building the country鈥檚 cybersecurity posture. A DICT-ICT Academy would be established.
One component of the plan, Uy said, includes 鈥渃apacity building and upskilling鈥 of cybersecurity personnel, with the projected opening of more than 2 million jobs in both the government and the private cybersecurity sectors brought about by the 鈥渉uge upsurge鈥 of online commerce following the COVID-19 pandemic.
鈥淥ur main problem鈥攖ypical in any government office鈥攊s the plantilla that鈥檚 allowed by DBM (Department of Budget and Management), based on budget and all of those, which is limiting us,鈥 he said.
Prone to poaching
鈥淭he sad thing about this is the positions or plantilla classification we have in government now is too outdated, that we still do not have job items for cybersecurity or (artificial intelligence) experts,鈥 Uy added.
With limitations on job titles and salaries, Uy said, the DICT could not retain its cybersecurity experts as they were prone to getting poached by higher-paying jobs in private companies or overseas.
鈥淪ometimes, we just appeal to their patriotism to do it for the country, to serve the public,鈥 he said.
He said the DICT would first improve the cybersecurity skills of government workers with its ICT Academy and then expand the training to include private individuals who want to also be trained.