(header image courtesy of rappler.com)
Hiding behind closed doors... except that, its not locked.
Regarding an article from Rappler, which summarized an analysis of the leaked data from the COMELEC website, we find out that the database - which was supposed to be "encrypted" - were easily easily torn apart and can be mined for data.
To be precise, the tested data was the data which was also used on the voter data leak site (wehaveyourdata.com - currently offline). And what made the revelation alarming was that, the procedure that allowed this data encryption fiasco was the appearance of an "encryption key" together with the leaked data. Meaning, that this key is part of a procedure to turn scrambled data (in this case the voter database) into readable text - like your name / address / etc.
To explain it simply, the leaked data has the chest (the voter data) and the key (encryption key), thats why the voter data leak site was able to display the details of voters stored on the database.
In the end, what I want to say is that - "In the first place, your website should be secured considering it houses millions of personal details pertaining to people who want to make a difference in order to ensure our countries future - voters, people who want to change the rotten system of stupidity and corruption"
For more concise and technical explanation of the content and procedure of the supposed pseudo hack on the leaked data, which the expert divulged on Rappler, please read the article here.