SchoolBreach.org
BreachesTrendsToolsLearnAbout
Free Security Check
Security Check
SchoolBreach.org

A public resource tracking data breaches in Philippine schools. Helping administrators protect student data through awareness, education, and free security tools.

© 2026 SchoolBreach.org · A community service by OceanEd

Navigate

  • Breaches
  • Trends
  • Tools
  • Learn
  • Methodology

Company

  • About
  • Privacy Policy
  • Terms of Service
  • Contact Us

Disclaimer: This tracker is maintained for educational and awareness purposes. Incidents are documented using threat intelligence monitoring, Philippine media reports, NPC filings, and responsible disclosures. Social media platforms are monitored for leads and are corroborated before publication or naming — never through active scanning or exploitation. Severity ratings and summaries are prepared with AI assistance and reviewed editorially. Full methodology →

Back to Breach Tracker
Website Defacement
MediumResolved

Bicol University

Four Bicol University students hacked the school's official website (bicol-u.edu.ph) to protest Administrative Order No. 91, which mandated online classes during the COVID-19 pandemic. The hackers argued the policy favored privileged students and called for mass promotion.

April 27, 2020Legazpi City, Albay, Bicol RegionNone (website only) records affected

Key Facts

Date of Incident
April 27, 2020
Date Discovered
April 27, 2020
Records Affected
None (website only)
Source
Scout Magazine / Inquirer
Data Types Exposed
Website content
Response / Action Taken

Specific remediation steps by Bicol University administration were not publicly disclosed. The website was restored after the defacement.

What Happened

On April 27, 2020, the official website of Bicol University (bicol-u.edu.ph) was defaced by a group of four student hackers. The attack was a direct protest against Administrative Order No. 91, Series of 2020, which mandated that classes would resume on May 2 via remote teaching and distance education strategies, with the semester ending on May 20, 2020.

The hackers replaced the homepage with a message directed at the university administration:

"Bicol University, the strategies you have presented only favors the privileged. Not all are privileged. We ask for a revision of the said admin order for the betterment of BUeños."

The group described their action as "the most notorious act ever witnessed in the history of the excellence of Bicol University." They signed off with the hashtags #EndTheSemester, #MassPromotion, and #NoOneGetsLeftBehind.

The Hackers

The four individuals operated under the usernames h1j4ck3r, blis5ful, d00mbring3r, and estrang-the-hero. Notably, the same group was responsible for an earlier defacement of the Bicol University website in November 2016, when they protested a controversial statement by the University Student Council regarding the burial of Ferdinand Marcos.

Context

The attack occurred during the height of the #MassPromotionNow movement on social media. Students across the Philippines were calling on educational institutions to grant passing grades to all students and end the semester early, rather than forcing online classes during a pandemic.

As student leader Irish Mae Barrion Torres explained: "The reason why lots of students oppose online classes is because it is anti-poor and there is little to no consideration to the students at all. Giving passing grades to all students and ending the semester are the most humane decisions in the middle of this crisis."

Torres noted that as a state university, the majority of Bicol University students came from poor families, making online classes impractical: "Online classes will not work in Bicol University considering that this is a state university and the majority of the students came from poor families."

Impact

  • The screenshot of the defaced website went viral overnight on social media
  • The incident became a symbol of student resistance to inequitable pandemic education policies
  • It highlighted the digital divide affecting students at state universities
  • The website was taken offline temporarily

How to Prevent This

  1. 1.Implement a Web Application Firewall (WAF) — to detect and block common defacement vectors
  2. 2.Keep CMS and server software updated — patch known vulnerabilities promptly
  3. 3.Use strong authentication for admin panels — enforce MFA and restrict access by IP
  4. 4.Monitor file integrity — deploy tools that alert on unauthorized changes to website files
  5. 5.Maintain offline backups — ensure rapid restoration capability when defacement occurs

Sources & References

All sources are independently verified. Access dates and archive links are recorded for each citation.

  1. [1]
    Scout Magazine (Inquirer) — 4 Bicol University students hacked their school website in the name of mass promotion (April 2020)
  2. [2]
    The Bicol Universitarian — Student leader Irish Mae Barrion Torres shared the screenshot of the defaced website with commentary
Bicol UniversityLegazpi CityBicolwebsite defacementstudent protestmass promotionCOVID-19online classeshacktivism2020

Related Incidents

Critical

A private medical college in Cebu City

June 24, 2026

Low

A foundation college in Mindanao

May 3, 2026

High

A state university in MIMAROPA

May 2, 2026

Know of a Breach?

Help us keep this tracker accurate and complete. Report school data breaches confidentially.

Report a Breach

Is This Entry Inaccurate?

If you represent the named institution or have evidence that corrects or updates this entry, you can request a correction or submit an official statement for publication.

We review all correction requests and respond within 5 business days. Verified corrections are applied promptly. Institutions may also submit a statement that will appear on this page as a right of reply.

Request a Correction

Protect Your School

Use our free tools and guides to assess your school's security posture.

Free Security ToolsGuides & Resources