Philippine Air Force Systems Compromised: Hackers Warn of Critical Security Flaws

Key Points :

• Threat actor: Klammer from “Deathnote Hackers International” (DNH)
• Systems compromised: Electronic Document Filing System (EDFS) and Military Integrated Information System (MIIS)
• Exploited vulnerabilities: Predictable credentials and insufficient rate limiting
• Critical weakness: Outdated password for a jet fighter pilot, unchanged for over a year
• Number of files exposed: 53,000 sensitive files, including classified documents from 1977 to 2025
• Potential risk: Vulnerabilities could be exploited by foreign entities, particularly Chinese hackers
• Recommendations: Mandatory password changes every six months, implementation of two-factor authentication (2FA), and stronger app usage policies
• Deep Web Konek has notified the Philippine Air Force about the breach; no official response yet