SchoolBreach.org
BreachesTrendsToolsLearnAbout
Free Security Check
Security Check
SchoolBreach.org

A public resource tracking data breaches in Philippine schools. Helping administrators protect student data through awareness, education, and free security tools.

© 2026 SchoolBreach.org · A community service by OceanEd

Navigate

  • Breaches
  • Trends
  • Tools
  • Learn
  • Methodology

Company

  • About
  • Privacy Policy
  • Terms of Service
  • Contact Us

Disclaimer: This tracker is maintained for educational and awareness purposes. Incidents are documented using threat intelligence monitoring, Philippine media reports, NPC filings, and responsible disclosures. Social media platforms are monitored for leads and are corroborated before publication or naming — never through active scanning or exploitation. Severity ratings and summaries are prepared with AI assistance and reviewed editorially. Full methodology →

Back to Breach Tracker
Unauthorized Access
MediumResolved

Mabalacat City College (MCC)

The Pinoy Grayhats breached Mabalacat City College's website (mcc.edu.ph) as part of the June 2020 wave of school cyberattacks during the pandemic shift to online learning.

June 18, 2020Mabalacat, Pampanga, Central LuzonUnknown records affected

Key Facts

Date of Incident
June 18, 2020
Date Discovered
June 18, 2020
Records Affected
Unknown
Source
GitHub (ajdumanhug/gothacked)
Data Types Exposed
Website contentStudent personal information
Response / Action Taken

MCC addressed the security vulnerabilities after the breach was disclosed.

What Happened

On June 18, 2020, the Pinoy Grayhats hacker group gained unauthorized access to the website of Mabalacat City College (MCC) at mcc.edu.ph in Mabalacat, Pampanga.

MCC is a local city college that was transitioning to online services during the COVID-19 pandemic. The breach highlighted how smaller, city-level institutions were equally vulnerable.

Context

The breach occurred on the same day as attacks against Apayao State College, Bulacan State University, DepEd Caraga, and other institutions — showing the systematic nature of the Pinoy Grayhats campaign.

Lessons for Schools

  1. 1.City colleges need security support — local government-funded schools often lack dedicated IT security staff
  2. 2.Shared hosting environments are risky — smaller institutions on shared hosting should ensure isolation between accounts
  3. 3.Free security tools exist — tools like Cloudflare (free tier), Let's Encrypt (free SSL), and OWASP ZAP (free scanner) can significantly improve security without cost

Sources & References

All sources are independently verified. Access dates and archive links are recorded for each citation.

  1. [1]
    GitHub Registry — Community-maintained registry of Philippine school hacking incidents (May-June 2020)
MCCMabalacatCentral LuzonPinoy Grayhats2020pandemiccity college

Related Incidents

Medium

Angeles University Foundation (AUF)

June 19, 2020

Medium

Technological Institute of the Philippines (TIP) Career Center

June 19, 2020

Medium

Lipa City Colleges

June 19, 2020

Know of a Breach?

Help us keep this tracker accurate and complete. Report school data breaches confidentially.

Report a Breach

Is This Entry Inaccurate?

If you represent the named institution or have evidence that corrects or updates this entry, you can request a correction or submit an official statement for publication.

We review all correction requests and respond within 5 business days. Verified corrections are applied promptly. Institutions may also submit a statement that will appear on this page as a right of reply.

Request a Correction

Protect Your School

Use our free tools and guides to assess your school's security posture.

Free Security ToolsGuides & Resources