The Independent National Electoral Commission (INEC) has launched an investigation into allegations of unauthorised access to its Continuous Voter Registration (CVR) database.
In a statement issued on Tuesday on its official X page, INEC said it became aware of reports circulating on social media and in sections of the media alleging that information was improperly retrieved from its voter registration database.
The commission said it is investigating the subsequent disclosure of information relating to a candidate in a recent political party primary election in the Federal Capital Territory (FCT).
According to INEC, it has commenced a thorough probe to establish the facts surrounding the incident and determine whether any of its internal protocols were violated.
The electoral body explained that authorised registration officers participating in the ongoing nationwide CVR exercise were granted controlled access to specific parts of the system to enable them to register new voters, process transfers, and update voter records.
It noted that such access is strictly limited to official duties and is withdrawn once the exercise concludes.
INEC revealed that preliminary findings from its audit trail have already identified the user account through which the information was accessed.
The Commission added that it is examining all technical, administrative and operational aspects of the matter to determine individual responsibility and establish whether there was any breach of its internal access-control procedures.
The electoral body further stressed that its preliminary investigation found no evidence of an external cyberattack or compromise of its systems.
According to INEC, the information in question was accessed using valid credentials assigned to personnel involved in the ongoing voter registration exercise but was released without authorisation.
The commission clarified that the incident involved the retrieval of a specific voter record and does not suggest any compromise of its wider voter registration infrastructure or the personal data of more than 90 million registered voters nationwide.
INEC said it would treat the security, confidentiality and integrity of voter data with seriousness, reaffirming its commitment to protecting voter information.
INEC also revealed that the Department of State Services (DSS) has independently commenced its own investigation into the matter.
The electoral body pledged full cooperation with security agencies and vowed to take appropriate legal action against anyone found responsible for any wrongdoing.
The Commission further urged members of the public and the media to avoid speculation while investigations continue, assuring Nigerians that its final findings will be made public in due course.
