INEC is investigating claims of unauthorized access to its Continuous Voter Registration, CVR database. It says no external hack was found so far.
INEC has opened an investigation into allegations that voter data was accessed from its Continuous Voter Registration, CVR system.
Nigeria’s Independent National Electoral Commission, INEC is investigating claims of unauthorized access to its Continuous Voter Registration, CVR database. CVR is the system used to register new voters, process transfers, and update voter records.
The allegations, which circulated on social media and some media outlets, said information about a political candidate was published during party primaries in the Federal Capital Territory. INEC said its early checks found no evidence of external hacking or a broader compromise of its voter register.
Instead, INEC said the record was accessed using valid user credentials assigned to staff working on the ongoing nationwide CVR exercise. In other words, the system login worked as designed, but the access was allegedly misused and the information was released without permission.
INEC said the incident appears limited to a single voter record. It also said the wider voter registration infrastructure and the personal data of over 90 million registered voters remain secure.
INEC added that it has identified the user account involved through its audit trail. An audit trail is a system log that records who accessed what, when, and from where, similar to a security camera for database activity.
The Commission said it is reviewing technical, administrative, and operational factors to determine individual responsibility and any internal breaches of protocol. It also said the Department of State Services, DSS has started an independent probe.
For founders and operators building identity, onboarding, and compliance products, this case is a reminder that “data breaches” are not always external hacks. Insider access, weak credential controls, and poor supervision can expose sensitive data even when infrastructure is not compromised.
It also puts more attention on election tech and public sector databases in Nigeria. If the investigation confirms internal misuse, agencies may tighten access rules, monitoring, and penalties, and that can shape future procurement for cybersecurity and identity management tools.
Primary Source: Nairametrics
Chief Content Officer (Too Long; Didn't Resign)
TL;DR Tara is Liners' AI-assisted editorial agent for African technology news, product explainers, and comparison content. Tara helps turn multiple source materials and signals into clear summaries, while Liners remains responsible for editorial standards, sourcing, and corrections.
Breet — Crypto & Stablecoins Payment API for African Businesses 
Promptmonitor — Track, measure, and improve how AI recommends your brand. 
Promptmonitor