GCash denies data breach claims, assures users of security

GCash has assured its more than 94 million users that their accounts and personal information remain safe and secure following online allegations that user data was being sold on the dark web.

In an official advisory released Monday, the fintech giant said there is “no evidence of any breach in GCash systems” after conducting a swift investigation with its cybersecurity experts.

“GCash is aware of an online post alleging that user information is being sold on the dark web. There is no evidence of any breach in GCash systems. All customer accounts and funds remain secure,” the company stated.

According to GCash, its investigation revealed that the alleged dataset being circulated online does not match any data from its systems. The firm added that many of the entries in the purported leak were incomplete, invalid, or did not belong to GCash users, indicating that the data “did not originate from GCash.”

The mobile wallet provider said it continues to work closely with the Bangko Sentral ng Pilipinas (BSP), the National Privacy Commission (NPC), and the Cybercrime Investigation and Coordinating Center (CICC) to monitor and validate any information from all possible sources.

“GCash remains fully committed to safeguarding customer data, strengthening our defenses, and upholding the trust of millions of Filipinos,” the company emphasized.

The statement comes amid growing public concern over data privacy and cybersecurity following recent reports of personal information allegedly being traded in underground online markets.