Menu
Browse

Cyber Threat Actor: LulzSec Pilipinas

Aliases: 2 aliases
Actor Type Location Known Incidents
 Icon
Activist
Philippines
2 incidents
Profile

LulzSec Pilipinas, also known as Pinoy LulzSec, is a hacker collective based in the Philippines. The group operates under several aliases and has been observed working alongside other Anonymous-affiliated entities such as Elite Cyber Security and the MCA and PHU DDOS Squad. No public evidence links the collective to a state sponsor; its affiliations appear limited to loose hacker alliances. Their activities have been documented in open‑source reports that describe both data‑theft and disruption operations targeting Philippine government institutions.

The collective’s known targets include national election authorities and customs agencies, both located within the Philippines. In the election‑related incident, the stated goal was to pressure the Commission on Elections to enable security features on vote‑counting machines ahead of a national poll. In the customs‑related incident, the actors said they acted in solidarity with Overseas Filipino Workers who objected to strict inspections of balikbayan boxes and accused the bureau of corruption and misplaced priorities. Thus, their objectives have been described as a mix of political persuasion and protest‑driven disruption rather than financial gain.

Their tactics have involved compromising public‑facing websites to gain access to underlying databases and then publishing the extracted data in plain text. They have also employed distributed denial‑of‑service tools to flood government web servers with traffic, causing intermittent outages and degraded performance. No specific malware families or custom exploit kits are mentioned in the available sources; the emphasis is on web‑based intrusion and volumetric attacks. The group’s tooling style appears to rely on readily available DDoS utilities and common web‑application weaknesses rather than sophisticated, bespoke malware.

One representative campaign is the March 2016 breach of the Philippine Commission on Elections database, which exposed personal information, fingerprints, passport details and administrative credentials of tens of millions of voters. Another notable operation is the August 2015 #OpCustoms DDoS action against the Bureau of Customs, carried out together with allied hacker groups to express support for overseas workers. These incidents illustrate the collective’s capacity to combine data exposure with service disruption to advance its stated political aims. Their actions have prompted warnings from security researchers about the heightened risk of phishing, business‑email‑compromise and extortion for the affected individuals.

Incidents
Attributed incidents available to members
2 incidents
Sources
Sources available to members
2 sources