THE University of the Philippines Mindanao (UPMin) is conducting a full investigation into a cybersecurity incident involving its Computerized Student Records System (CSRS) after detecting an unauthorized message posted on the platform on August 11, 2025.
In a statement, the university said its Information Technology Office immediately took the system offline within minutes of detection to contain the cybersecurity breach and block any further unauthorized access.
Preliminary findings indicated no evidence of a data breach or leakage of sensitive information belonging to faculty or students. However, UPMin stressed that the investigation remains ongoing in coordination with law enforcement and cybersecurity agencies to identify, track, and apprehend the perpetrator or perpetrators.
The CSRS was restored to operation on August 12 and is now accessible to users during weekdays from 8 a.m. to 5 p.m. The IT Office has issued a directive requiring all users to log back into the system, with non-student accounts undergoing revalidation to confirm whether they remain active or inactive.
As part of precautionary measures, the university has introduced additional layers of security to strengthen defenses against similar cyber incidents. All CSRS users are encouraged to periodically update their login credentials and practice good cybersecurity habits to minimize risks.
The administration also reminded members of the UP Mindanao community to avoid spreading unauthorized or unverified information about the incident, emphasizing that any concerns or reports should be directed to official university communication channels.
“The University remains committed to safeguarding the privacy and security of all stakeholders’ information,” the Office of the Chancellor said, adding that it appreciates the community’s patience, cooperation, and vigilance while the matter is being addressed. DEF