Metro Pacific Tollways Corp. (MPTC), a company that operates NLEX, SCTEX, CAVITEX, and other tollways with EasyTrip, has reported a data breach affecting some user accounts, potentially compromising their toll wallet balances.
According to the report, hacker group DeathNote Hackers has compromised almost one million EasyTrip records, according to cybersecurity group Deep Web Konek. The leak involved 40,257 reloaded records, 16,703 pre-loaded records, 83,916 reload reports, 15,424 insertion reports, and 258,800 adjustment records. Aside from that, 69,196 invalid adjustment records and 488,552 API adjustment logs have also been compromised.
The extent of the breach also includes 247,324 used and unused cards and MPTC’s internal telephone directory containing 3,000 entries.
Luckily, this data breach has been contained by the MPTC’s information security team. “We assure our Easytrip account holders that their toll wallet balances are intact and secure. We will reach out to the affected account holders,” MPTC said in a statement.