Hackers Reveal How CBT Centres’ Servers Were Compromised During 2025 UTME

Fresh revelations have emerged on how some accredited Computer-Based Test (CBT) centres allegedly colluded with hackers to manipulate the 2025 Unified Tertiary Matriculation Examination (UTME).

Investigations show that certain operators supplied server details to hackers, enabling them to penetrate systems, alter processes, and facilitate exam malpractice.

Technical Glitches and Mass Failure

The 2025 UTME, conducted by the Joint Admissions and Matriculation Board (JAMB), was marred by widespread technical issues. Out of 1.9 million candidates, about 1.5 million scored below 200 out of 400. This sparked nationwide outrage, with the JAMB Registrar, Prof. Is-haq Oloyede, admitting publicly that some technical failures had affected candidates’ results.

Security operatives, including the Department of State Services (DSS) and the Nigeria Police, arrested over 20 suspects linked to server breaches in Abuja.

In subsequent months, JAMB reported cases of impersonation through Artificial Intelligence, false claims of albinism to bypass biometric checks, and other fraudulent schemes. Data from its 2025 policy meeting revealed that Imo and Anambra states topped the list of centres caught engaging in malpractice, with 19 centres nationwide implicated.

By August, 6,458 candidates were under investigation for technology-enabled cheating. A special 23-member committee was set up to probe the infractions.

How Hackers Breached Servers

A hacker, identified only as Ahmed, disclosed that many CBT centres willingly provided their Internet Protocol (IP) addresses to syndicates. With these details, hackers gained remote access to candidates’ login information and examination questions.

He explained that mercenaries — individuals paid to write exams for candidates — operated remotely once they had server access. Candidates inside exam halls were sometimes deliberately logged out of the system, giving hackers control to answer questions before reconnecting them.

Ahmed said:

“Candidates are told to remain calm when their systems log out. By the time they are logged back in, the mercenaries have already answered the questions. All they need to do is click ‘Submit.’”

An education consultant in Lagos confirmed that such breaches were impossible without insider collaboration, stressing that many parents paid huge sums to secure the services of these so-called “miracle centres.”

Inside Support and Profits

Some CBT operators admitted that centre owners were aware of compromises but ignored them because of the financial benefits. They claimed certain JAMB insiders also supported the operations, making it difficult for the board to completely clamp down on malpractice.

A Lagos-based CBT operator said:

“The centres know their servers are compromised, but they won’t act because they make millions from it. Some even have direct contacts within JAMB who provide cover.”

JAMB and Stakeholders React

JAMB’s spokesperson, Dr. Fabian Benjamin, dismissed claims that its main servers were hacked. He explained that the board’s questions are transmitted locally via a secure network and not hosted on the internet. According to him, the breaches occurred at compromised CBT centres in collusion with their operators.

The National President of the CBT Centre Proprietors Association of Nigeria, Austin Ohaekelem, admitted that while malpractice exists, some glitches were being misinterpreted as fraud. He expressed concern about the blacklisting of centres that suffered genuine technical problems.

Other education stakeholders, including tutorial centre operators, warned against overgeneralisation. They stressed that while exam malpractice persists, many coaching centres have distanced themselves from such activities due to the risks involved.

Call for System Overhaul

Experts and education consultants urged JAMB to strengthen its technological framework, block loopholes, and conduct regular internal audits to restore public confidence in the examination process.

They argued that unless systemic reforms are implemented, desperate candidates and corrupt operators will continue to exploit weaknesses in the system.