PNP Officers’ Data Allegedly Breached, 414,000 Records Put Up for Sale on Dark Web
A user identified as SentinelX has claimed responsibility for a major data breach targeting the Philippine National Police (PNP), allegedly compromising the personal information of both active and retired officers. The post, which appeared on a dark web forum, offers the stolen database for sale and states that the breach involves 414,000 records containing sensitive information that could impact the lives and careers of affected personnel.
https://iili.io/Kgg6c9n.png
According to the threat actor, the dataset includes comprehensive employee records such as rank, badge number, account number, assigned unit, station, and designation. It also reportedly contains highly personal information including full names, birthdates, gender, physical description, blood type, permanent address, contact numbers, and both official and personal email addresses. Additionally, the post claims the breach exposed sensitive government identifiers such as TIN, GSIS/BP, Pag-IBIG, PhilHealth, and SLL numbers, as well as employment details like date of entry, order of merit, pay records, appointing authority, and service history.
Beyond individual data, the threat actor alleges that family records of police personnel were also compromised. These include the names, relationships, birthdates, and contact information of family members and emergency contacts. Furthermore, the dataset reportedly contains information related to firearms ownership, such as license numbers, firearm types, calibers, serial numbers, ammunition details, and issuing authorities.
The listing also references documents on promotions and Statements of Assets, Liabilities, and Net Worth (SALN). Promotion details include previous and current ranks, rank status, type, authority, effectivity date, and remarks, while SALN records list the year filed, date submitted, total assets, liabilities, and net worth.
As of this writing, the PNP has not yet released an official statement regarding the alleged breach. If verified, the incident would represent one of the most extensive exposures of law enforcement data in the Philippines to date, potentially placing both active-duty and retired officers and their families, at risk of identity theft and other forms of exploitation.
