Viva Communications Allegedly Suffers Data Breach, 10GB of Internal Documents Claimed Leaked
MANILA, Philippines — A threat actor identified as Klammer, allegedly affiliated with the hacking group Deathnote Hackers, has claimed responsibility for a cyberattack against Viva Communications, Inc., one of the Philippines' largest entertainment and multimedia conglomerates.
The claim surfaced on a cybercrime forum where the threat actor announced the release of what was described as a 10GB archive of internal company documents and records allegedly obtained from Viva Communications.
According to the threat actor, the leaked data contains a wide range of corporate information, including project permits, internal memoranda, employee and associate email addresses, and other behind-the-scenes company documents. Screenshots accompanying the post appeared to show corporate records, business information, and contact details allegedly linked to company personnel.
In the forum post, Klammer cited both ideological and security-related reasons for targeting the company. The threat actor accused Viva Communications of promoting content that they personally found objectionable and claimed to have little sympathy for the organization. The post also alleged that Viva had previously experienced security incidents and criticized the company's cybersecurity practices, claiming that insufficient improvements were made following earlier breaches.
Viva Communications, is among the country's most prominent entertainment companies, with interests spanning film production, television, music, digital media, talent management, and content distribution. The company operates numerous subsidiaries and entertainment brands that have played a major role in the Philippine media industry for decades.
The threat actor further alleged that the compromised files consist primarily of document-based records and internal business materials. While no technical details regarding the alleged intrusion were disclosed, the forum post claimed that the attackers were able to obtain sensitive corporate information and subsequently release the data online.
If verified, the exposure of employee and associate email addresses could present cybersecurity risks, including phishing attempts, social engineering campaigns, and other forms of targeted cyberattacks. Internal memoranda, permits, and project-related documents may also contain information not intended for public disclosure.
At the time of writing, there has been no public statement from Viva Communications regarding the alleged breach. As investigations continue, cybersecurity researchers and affected stakeholders are expected to assess the scope of the alleged compromise and determine the authenticity of the data being circulated online.
