10 May NPC Orders Jollibee to Suspend Online Delivery System
Last Tuesday evening, the National Privacy Commission (NPC) issued an order to fast food giant Jollibee, asking it to suspend its online delivery system due to vulnerabilities that may put the data of some 18 million users at risk.
Although the system has not yet been breached, the NPC says the site has to temporarily be shut down until the flaws are addressed. Head of NPC’s Complaints and Investigations Division (CID) Francis Euston Acero says that they will not be revealing the vulnerabilities and personal information accessed at this time.
Acero added that the vulnerabilities were discovered December last year by an uncontracted security firm. He assured that no data was scraped or exfiltrated.