Update: Website now completely defaced.
Apparently, the hacker has manage to find a blind SQL injection vulnerability in the website. In which later, gives him the access of the control panel.
From the main website (usls.edu.ph), the hacker made nothing but just a simple modification in one of its sliders. “Hacked by : THENETANON – the anon cyber platoon.”
The same alteration is also made in one USLS sub site, Institute for Negros Development (http://www.usls.edu.ph/ind/index.php).
In the Institute of Negros Development case, the hacker pointed out the security glitch. As according to him, the administrator of the site just use a common password “123“.
URI of the affected site here: http://www.usls.edu.ph/