Breach Trends

Analysis of 54 documented school data breaches across the Philippines from 2013 to 2026.

Key Finding: Breaches Are Escalating

Breaches surged from 1 incident in 2019 to 12 incidents in 2025, with attack scale growing from hundreds to millions of records.
Attack type shifted from unauthorized access & defacement (2020) to massive database leaks (2025).
DepEd regional offices are the most frequent target, with breaches spreading from NCR to nationwide.

The Philippines Is a Top Target

106

breached accounts per 100 people in the Philippines — more than double the Asian average of 52

Source: Surfshark Research, 2024

124M

total accounts breached in the Philippines — 2nd highest in Southeast Asia

Source: Surfshark Research, 2024

3 accounts

hacked every minute in the Philippines — a relentless tide of data breaches

Source: Straits Times, 2025

of Philippine organizations are mature enough to repel cyberattacks — 64% are still building defenses

Source: Cisco, 2024

4th

in the world for most cyberattack incidents, with government and education among the top targets

Source: DICT, 2023

0.04%

of GDP spent on cybersecurity — nearly half the ASEAN average of 0.07%

Source: National Cybersecurity Plan 2028, 2023

Filipinos Don't Stay Silent After a Breach

24%

took legal action

21%

closed their account

18%

exposed it on social media

Among Filipinos who suffered a data breach, these were the most common responses. The Philippines ranked #1 in cybersecurity concern (234/300) among 13 countries surveyed.

Source: Unisys Security Index, 2019

The average Filipino email has been breached almost 3 times (Surfshark Research). The Philippines needs 180,000 more cybersecurity professionals (ISC² Cybersecurity Workforce Study). Schools — which hold sensitive data on minors — are especially at risk.

Breaches by Year

Records Affected by Year

Based on confirmed/claimed record counts. "Unknown" counts are excluded.

By Attack Type

By Severity

63% of all breaches are rated Critical or High severity.

By Region

NCR14

CALABARZON8

National6

Western Visayas4

Davao Region4

Central Visayas4

Central Luzon4

Eastern Visayas3

CAR2

Ilocos Region / Central Luzon1

Bicol Region1

MIMAROPA1

Caraga1

Bicol1

Timeline Highlights

2013

First Documented Incident

Two schools and a municipal government in Bohol were hacked and defaced — among the earliest known cyberattacks on Philippine educational institutions.

2014

Hacktivism Hits Higher Education

Ateneo Law School's Student Access Module was hacked by AnonCalapan (AnonGhost Philippines), leaking student credentials. The politically motivated attack was part of a broader wave of Philippine hacktivism tied to Typhoon Yolanda criticism.

2019

First Major Data Breach

University of the East breach — 1,572 records exposed via unauthorized access. An early warning sign of data-focused attacks.

2020

Mass Hacking Wave

12 breaches in a single year. Hacktivist groups like Pinoy Grayhats targeted university portals nationwide. San Beda saw 400,000+ plaintext credentials exposed.

2022

Ransomware Arrives

University of Perpetual Help hit by ransomware — marking a shift to more destructive, monetized attacks.

2023

Major University Targeted

De La Salle University experienced a cyberattack, showing even well-resourced institutions are vulnerable.

2024

DepEd Under Fire

DepEd OVAP database exposed 210,000+ records. A separate 750GB alleged breach surfaced, targeting government education systems.

2025

Explosion in Scale

10+ breaches with millions of records. DepEd Laguna (7M+), DepEd CAR (6M+), and DepEd Ilocos Norte/Aurora (3M+) leaks show systemic vulnerability. Database leaks replace unauthorized access as the dominant attack type.

2026

Trend Continues

3 breaches already in early 2026, including a claimed 600K-record exposure and a website defacement with data exfiltration.