- Supporting people who have been affected
- For those affected by this incident, the COMELEC has set up a Voter Care Center specifically to provide assistance, such as identity verification, at no cost to you.
- Continuing to strengthen cyber defenses at COMELEC
- The COMELEC, in coordination with the Department of Science and Technology Information Communications Technology Office (DOST-ICTO), has completely overhauled its public information website.
- In a comprehensive report to the National Privacy Commission, the COMELEC has outlined the steps it has taken in this regard, including:
- 24/7 proactive network monitoring, with more restrictive review policies and the tightening of internal network security protocols;
- Use of a new trusted SSL certificate for the entire COMELEC website;
- Use of a new web application firewall;
- Regular vulnerability scanning and penetration testing;
- Recoding of all critical web applications using Java Server Pages (JSP);
- Source code audits prior to web application availability on the COMELEC website
The COMELEC has also cooperated with the DOST in the conduct of a comprehensive review of COMELEC's IT system security to identify and immediately address any other vulnerabilities that may exist, and assess COMELEC's data sharing and use policies.
