Cyber Command Armed Forces of the Philippines

Cyber Command Armed Forces of the Philippines

Share

One Cyber. One Command.

24/06/2026

CYBER ADVISORY | Zero Trust: Never Trust, Always Verify

In today’s cyber threat landscape, trust alone is no longer enough.

Cybercriminals continuously exploit stolen credentials, compromised devices, and insider access to infiltrate networks. Traditional security models that automatically trust users or devices once inside the network perimeter are no longer sufficient to defend against modern cyber threats.

What is Zero Trust?

Zero Trust is a cybersecurity approach based on a simple principle:

“Never Trust, Always Verify.”

Under a Zero Trust Policy, no user, device, application, or system is automatically trusted, whether inside or outside the network. Every access request must be continuously verified before access is granted.

Why is Zero Trust Important?

Cyberattacks can originate from anywhere:
• Stolen usernames and passwords
• Phishing and social engineering attacks
• Compromised devices
• Insider threats
• Supply chain compromises

A single compromised account should never provide unrestricted access to critical systems.

Core Principles of Zero Trust

✅ Verify Every User and Device
Authenticate identities and validate device security before granting access.

✅ Apply Least Privilege Access
Provide only the minimum access necessary to perform assigned tasks.

✅ Assume Breach
Operate with the mindset that attackers may already be inside the network and continuously monitor for suspicious activity.

✅ Continuous Monitoring and Validation
Regularly assess users, devices, and network activities to detect anomalies and threats.

How Organizations Can Implement Zero Trust

• Enforce Multi-Factor Authentication (MFA)
• Implement Role-Based Access Controls (RBAC)
• Segment critical networks and systems
• Continuously monitor and log activities
• Regularly update and patch systems
• Conduct cybersecurity awareness training

📌 Remember:

Cybersecurity is not about trusting who is inside the network, it's about continuously verifying who is requesting access.

A Zero Trust mindset helps protect critical systems, sensitive information, and mission-essential operations from evolving cyber threats.

Trust nothing. Verify everything. Secure the mission.









Photos from Cyber Command Armed Forces of the Philippines's post 23/06/2026

CYBER COMMAND, AFP Concludes Strategic Force Design Engagement, Charts Path Toward Full Operational Capability

The Cyber Command, Armed Forces of the Philippines (CyCOM,AFP) successfully concluded its four-day Force Design Engagement with the Defense Security Cooperation Agency’s (DSCA) International Training, Education and Advising (ITEA) Team from 15 to 18 June 2026 at Camp General Emilio Aguinaldo, Quezon City. The engagement brought together CyCOM,AFP leaders, staff officers, subject matter experts, and international partners in a collaborative effort to refine the Command’s force structure, operational concepts, workforce development framework, and long-term capability roadmap.

Over four days of intensive discussions and workshops, participants examined critical aspects of force generation, mission-essential cyber teams, workforce lifecycle development, training and certification pathways, and the development of CyCOM,AFP’s first Joint Operational Concept. These discussions enabled the Command to identify capability gaps, validate operational requirements, and establish a clear framework for building a modern cyber force capable of supporting AFP operations and defending national interests in cyberspace.

In his closing remarks, BGEN JOEY T FONTIVEROS PA, the Commander of CyCOM,AFP, underscored that the Command's transformation is not merely about increasing personnel, acquiring technology, or developing organizational structures, it is about building a force capable of securing and dominating the cyber battlespace before threats can affect the nation and the Armed Forces. Emphasizing a proactive and mission-focused mindset.

In his statement “That is the Command we are building: not one that reacts to the fight, but one that already owns the ground the fight would be fought on.”, it encapsulates CyCOM,AFP’s vision of becoming a forward-leaning cyber force that anticipates threats, maintains persistent situational awareness, and possesses the capability to defend, respond, and operate decisively across the cyber domain. Rather than waiting for adversaries to act, CyCOM,AFP aims to establish and maintain a position of advantage, one built upon skilled personnel, effective doctrine, resilient infrastructure, and integrated joint operations. The vision reflects a commitment to ensuring that cyberspace remains a domain where the AFP can operate securely, confidently, and effectively in support of national defense objectives.

The engagement also reinforced the importance of international cooperation and knowledge sharing. Through the support of DSCA, ITEA, JUSMAG, INDOPACOM, and other partner organizations, CyCOM,AFP gained valuable insights from experienced cyber professionals who have successfully navigated similar force development challenges. These partnerships continue to play a vital role in accelerating capability development, strengthening interoperability, and enhancing the Command’s readiness to address emerging cyber threats.

As the workshop concluded, CyCOM,AFP emerged with a clearer understanding of its priorities, a validated force development framework, and a concrete roadmap for future growth. More importantly, it reaffirmed the Command’s commitment to transforming strategic plans into operational realities. Guided by a shared vision and strengthened by enduring partnerships,
CyCOM,AFP continues its journey toward becoming a resilient, adaptive, and decisive cyber force, one prepared not only to defend the nation in cyberspace, but to shape and secure the cyber battlespace in support of a stronger and more capable Armed Forces of the Philippines.











Photos from Cyber Command Armed Forces of the Philippines's post 23/06/2026

Strengthening Allied Cyber Defense: AFP Cyber Command Conducts JSOC–DCO Subject Matter Expert Exchange with USINDOPACOM

From 08 to 15 June 2026, the Cyber Command, Armed Forces of the Philippines successfully conducted the Joint Security Operations Center (JSOC) and Defensive Cyberspace Operations (DCO) Subject Matter Expert Exchange (SMEE) under the Mutual Defense Board and Security Engagement Board (MDB-SEB) framework, in partnership with the United States Indo-Pacific Command (USINDOPACOM).

The exchange brought together cyber operators from both nations in a collaborative environment focused on advancing capabilities in Security Operations Center (SOC) operations, cyber incident response, threat intelligence, network defense, and defensive cyberspace operations. Participants engaged in in-depth discussions, hands-on laboratory exercises, and scenario-driven simulations covering endpoint monitoring, malware analysis, cyber threat intelligence reporting, and incident investigation techniques.

The culminating activity challenged participants to integrate and apply acquired knowledge in a realistic operational environment, where simulated cyber threats were detected, analyzed, investigated, and contained through coordinated SOC and threat intelligence workflows. The exercise concluded with a closing ceremony led by BGEN JOEY T FONTIVEROS PA, Commander, Cyber Command, AFP, together with LTCOL RONALD FURNIEL of the Pacific Air Forces (PACAF), recognizing the participants’ achievements and reaffirming both nations’ commitment to advancing cyber defense cooperation.

Beyond technical proficiency, the SMEE strengthened interoperability, enhanced professional trust, and reinforced the enduring partnership between the AFP and USINDOPACOM. This engagement reflects a shared commitment to collective defense and continuous capability development in securing critical information infrastructures against evolving cyber threats.

One Cyber. One Defense. Shared Security.







21/06/2026

Happy Father's Day!

Cyber Command honors all fathers among our officers, enlisted personnel, and civilian human resource men. Thank you for your dedication to your families, service, and nation. Wishing you a joyful and meaningful celebration.

Photos from Cyber Command Armed Forces of the Philippines's post 18/06/2026

Strengthening Cyber Defense Collaboration: Cyber Command, AFP Engages with Western Command

On 15 June 2026, Cyber Command, AFP Commander BGEN JOEY T FONTIVEROS PA conducted an official visit to the Headquarters, Western Command (WESCOM) in Puerto Princesa City to strengthen coordination and enhance cyber defense cooperation in support of the Armed Forces of the Philippines' mission.

Upon his arrival, BGEN FONTIVEROS PA was welcomed by COMMO CHARLES MERRIC A VILLANUEVA PN, Deputy Commander, WESCOM, and subsequently rendered a courtesy call to VADM ALAN M JAVIER PN, Commander, WESCOM.

During the engagement, both Commanders discussed the ongoing Cyber Risk Assessment (CRA) and Cyber Defend Forward Operations, underscoring the importance of enhancing WESCOM's cyber defense posture, strengthening network monitoring capabilities, and reinforcing collaborative efforts to protect critical military information systems against evolving cyber threats.

The visit reaffirmed the shared commitment of Cyber Command, AFP and Western Command to advancing cyber resilience, strengthening operational readiness, and fostering interoperability in safeguarding the Armed Forces' digital battlespace. Through sustained collaboration and capability development, both Commands continue to reinforce a resilient and secure cyber environment in support of national defense.

One Cyber. One Command.








18/06/2026

CYBER AWARENESS: Beware of Malicious Browser Extensions

Browser extensions can enhance your online experience by adding useful features such as ad blocking, password management, grammar checking, and productivity tools. However, a seemingly harmless browser extension can quietly turn into a powerful spying tool once installed. Malicious browser extensions often disguise themselves as useful tools like ad blockers, coupon finders, or productivity boosters. But behind the scenes, they can monitor everything you do online such as your searches, login credentials, banking activity, and even the websites you visit. Some are even capable of altering web pages, redirecting you to fake login sites, or silently injecting malicious code into your browsing sessions.

What makes them especially dangerous is that many request “normal-looking” permissions that users tend to approve without thinking twice. Once granted access, they can operate in the background without obvious signs, making detection difficult until damage is already done.

That’s why it’s important to always verify browser extensions before installing them. A simple click to “Add Extension” could open the door to serious privacy and security risks.

Key Facts
-Extensions can access browsing activity and data.
-Some extensions steal usernames and passwords.
-Malicious add-ons may inject unwanted advertisements.
-Extensions can track users across websites.
-Cybercriminals disguise malware as useful tools.
-Even official stores can contain harmful extensions.

Examples of Malicious Browser Extensions
-Fake ad blockers containing hidden malware.
-Counterfeit password manager extensions.
-Fraudulent coupon and shopping assistants.
-Fake cryptocurrency wallet extensions.
-Malicious video downloader add-ons.
-Fake AI productivity and writing tools.

Red Flags to Watch For
-Requests excessive permissions unrelated to function.
-Very few reviews or suspicious ratings.
-Poor grammar in descriptions and updates.
-Unknown developer or missing contact information.
-Frequent pop-up advertisements after installation.
-Sudden browser slowdowns or homepage changes.

Recommendations to Stay Safe
-Install extensions only from trusted developers.
-Review permissions before installation.
-Read user reviews and ratings carefully.
-Remove unused or unnecessary extensions regularly.
-Keep your browser updated at all times.
-Use reputable antivirus and security software.

Before installing any browser extension, ask yourself whether you truly need it and whether its requested permissions match its intended purpose. A few moments of verification can prevent identity theft, financial loss, and compromise of sensitive information. Stay informed, stay vigilant, and browse safely.







15/06/2026

CYBER ADVISORY | Zero Trust: Never Trust, Always Verify

In today’s cyber threat landscape, trust alone is no longer enough.

Cybercriminals continuously exploit stolen credentials, compromised devices, and insider access to infiltrate networks. Traditional security models that automatically trust users or devices once inside the network perimeter are no longer sufficient to defend against modern cyber threats.

What is Zero Trust?

Zero Trust is a cybersecurity approach based on a simple principle:

“Never Trust, Always Verify.”

Under a Zero Trust Policy, no user, device, application, or system is automatically trusted, whether inside or outside the network. Every access request must be continuously verified before access is granted.

Why is Zero Trust Important?

Cyberattacks can originate from anywhere:
• Stolen usernames and passwords
• Phishing and social engineering attacks
• Compromised devices
• Insider threats
• Supply chain compromises

A single compromised account should never provide unrestricted access to critical systems.

Core Principles of Zero Trust

✅ Verify Every User and Device
Authenticate identities and validate device security before granting access.
✅ Apply Least Privilege Access
Provide only the minimum access necessary to perform assigned tasks.

✅ Assume Breach
Operate with the mindset that attackers may already be inside the network and continuously monitor for suspicious activity.
✅ Continuous Monitoring and Validation
Regularly assess users, devices, and network activities to detect anomalies and threats.

How Organizations Can Implement Zero Trust

• Enforce Multi-Factor Authentication (MFA)
• Implement Role-Based Access Controls (RBAC)
• Segment critical networks and systems
• Continuously monitor and log activities
• Regularly update and patch systems
• Conduct cybersecurity awareness training

📌 Remember:

Cybersecurity is not about trusting who is inside the network, it's about continuously verifying who is requesting access.

A Zero Trust mindset helps protect critical systems, sensitive information, and mission-essential operations from evolving cyber threats.

Trust nothing. Verify everything. Secure the mission.









Photos from Cyber Command Armed Forces of the Philippines's post 01/06/2026

FORUM ENGAGEMENT | Strengthening Cyber Resilience Through Citizen Participation

On 28 May 2026, Protecta Pilipinas, in partnership with the Department of National Defense, Armed Forces of the Philippines, and Cybercrime Investigation and Coordinating Center, hosted the forum entitled “Citizens on the Frontline: Mobilizing a Volunteer Corps to Strengthen Infrastructure Security and Cyber Resilience” at the PLDT Smart Pressroom, Ramon Cojuangco Building, Makati City.

The activity formally opened with remarks from Atty. Roy D. Ibay, Vice President and Head of Regulatory Affairs of Smart Communications, and gathered key leaders from government, defense, private sector, and civil society organizations to discuss the growing importance of collective action in strengthening the country’s cyber resilience and critical infrastructure protection.

Among the distinguished panelists was BGEN JOEY T FONTIVEROS PA, Commander of Cyber Command, Armed Forces of the Philippines, who emphasized the vital role of reservists and civilian participation in advancing the nation’s cyber defense capability. He highlighted the successful integration of reservists during multinational Cyber Defense Exercises conducted in recent military engagements, stressing the importance of immersing cyber volunteers in realistic operational environments to strengthen preparedness, interoperability, and mission effectiveness.

BGEN FONTIVEROS PA likewise underscored the importance of sustaining and professionalizing the country’s cyber workforce through long-term institutional support, legislative initiatives, and continuous capability development. He emphasized that beyond technical skills and knowledge, nationalism and patriotism remain essential foundations in building a resilient and mission-ready cyber defense force.

The forum reinforced the significance of a whole-of-nation approach in addressing emerging cyber threats and safeguarding the country’s digital and critical infrastructure.








Want your business to be the top-listed Government Service in Quezon City?

Click here to claim your Sponsored Listing.

Location

Category

Address


Camp General Emilio Aguinaldo
Quezon City
1110