A threat actor has allegedly breached and leaked a sensitive database belonging to the Philippine Amusement and Gaming Corporation (PAGCOR). PAGCOR is a government-owned and controlled corporation in the Philippines, established to regulate, authorize, and license games of chance and casinos nationwide. The leaked database is purportedly the National Database of Restricted Persons (NDRP), which contains information on individuals banned from entering casinos, often due to gambling addiction.
The threat actor claims to have specifically targeted the “Government Personnel” section of the database. The dump, allegedly 87MB in size and containing over 4 million lines of data, was shared on a dark web forum. The actor stated the attack was an “Authenticated Scrape” carried out by operations personnel. The leaked information allegedly includes the following details:
- Memo Circular Number
- Last Name
- First Name
- Middle Name
- Birth Date
- Position
- Agency
The perpetrator described the act as a form of protest against PAGCOR, calling the agency an “enabler of addiction.” They claimed that the money earned by the agency, which enables gambling, should instead be used to help families. The leak exposes sensitive personal information of government employees from various agencies, including the Senate, Philippine National Police (PNP), and numerous local government units (LGUs), who were reportedly listed due to gambling-related issues.
